A Hardware Secure Module in your hand
With an HSM you will have tons of secret and private keys stored and secured.- Access them to encrypt and decrypt content
- Sign and authenticate your communications
- Set-up your own Public Key Infrastructure
Open source: hardware and software
For an open audit by all the community. Hosted at Github.It runs on any Raspberry Pico board or ESP32-S3.
What is Pico Keys?
Pico Keys is a set of firmwares ready to run on any Raspberry Pico or ESP32-S3 microcontroller.. Each firmware (Pico HSM, Pico Fido and Pico OpenPGP) follows separate standardized specifications with different purposes but with a single common premise: having a personal key device.
How to run the firmware?
Just download the firmware for your board and load it. It will convert your Pico device into a personal key. Just plug it in your USB and it will be identified by your OS automatically.
Which firmware do I need?
If you need to generate and store dozens of keys, then go for Pico HSM. If you are looking for a personal Passkey (Fido2) for secure logging, then go for Pico Fido. If you need to interface with PGP keys for secure e-mail, then go for Pico OpenPGP.
Do you provide the hardware?
No. You can acquire multiple boards mounting a RP2040, RP2350 or ESP32-S3 chip from different vendors. Our firmwares are ready to run on any board.
Which hardware is recommended?
For boards using either the RP2350 or ESP32-S3 chips, both are recommended. The RP2350 stands out with a larger One-Time Programming (OTP) region, providing additional space for storing secure keys and configurations, and is likely to offer greater support for future updates. However, the RP2040 is not advisable for applications requiring hardware security, as it lacks built-in security features essential for robust protection.
RSA key length (bits) | 1024 – 4096 |
Number of RSA keypairs (4096 bits) | 128 |
ECC key length (bits) | 192-521 |
Elliptic curves | NIST P, Brainpool, SECG/Koblitz, Edwards |
Number of ECC keypairs (521 bits) | 128 |
AES key length (bits) | 128, 192, 256 |
AES modes | ECB, CBC, CFB, OFB, XTS, CTR, GCM and CCM |
RSA key length (bits) | Average time (seconds) |
---|---|
1024 | 16 |
2048 | 124 |
3072 | 600 |
4096 | ~1000 |
Start making your keys more secure
Never is too late to start to keep your keys safer. It is time to start
START TODAY