In theory, if you generate a new key pair, you can revoke the old key and push that information to the key servers. Were any of these keys still valid? Were the emails they were keyed to still in service? There was no way for me to know any of it. I recently looked at my key-chain and realized that it contained about a dozen public keys that I have not used or even thought about in years. It’s just annoying because the tools we have aren’t all that great, the integration with mail clients has been shitty for years and actually keeping track of your keys is a pain in the ass. There is also nothing inherently difficult about managing them. There is nothing inherently hard about generating private and public key pairs. Or rather, whenever it is used, it is abstracted away, and hidden behind layers of misdirection. The problem is, no one is actually using it. It is a mature technology an an industry standard. We are in the final phases of testing a new, more portable USB-A & USB-C OnlyKey hardware platform and expect to have some news about launch in late 2020 / early 2021.Public encryption is great. Alternatively, OpenSSH supports OnlyKey - read more about that here. This allows users to import existing keys to OnlyKey for secure SSH. PGP (RSA and ECC) key import support will be added in our next OnlyKey SSH agent release. Improved OnlyKey SSH Support – OnlyKey SSH agent now supports both derived keys and stored keys for users who wish to use a single key to log into multiple servers. If you are in the market for a free, open source, and cross-platform software password manager, check out KeePassXC and check out the OnlyKey Users Guide to get started. A recent update to KeePassXC allows using OnlyKey as a security key to protect your software password manager. KeePassXC Support – OnlyKey is supported in KeePassXC. This will replace the existing OnlyKey Support Forum. New OnlyKey Community Forum – We have launched our new OnlyKey Community Forum available here –. Updates have been made for improved usability of the security key feature and to support the ability to manage FIDO2 resident keys. Recognizing which profile you are logged into is now easier with profile colors, OnlyKey has Green light for Primary profile and Blue light for Secondary profile. Hold down button #3 for 5 seconds to lock OnlyKey and switch profiles. OnlyKey supports a primary and secondary profile, switching between the two is now even easier. Primary Profile and Secondary Profile LED Color Of course, with this feature additional security is also required and a privileged access mode is required to configure these values. Another example might be allowing OnlyKey to type Ctrl+Alt+T to open a terminal in Ubuntu to run a commonly used command. For example, wouldn’t it be nice to login to Windows with just a single button press? SysAdmin mode permits OnlyKey to enter Ctrl-Alt-Del, then enter usernames and passwords. We plan to release this on NPM soon.Īnother top-requested feature, enabling SysAdmin mode permits OnlyKey to type almost any combination of characters in addition to usernames and passwords. OnlyKey generates an unlimited number of derived keys which are unique to a developer’s domain and may be used in web applications. We have developed an innovative way to permit 3rd-party developer use in external applications. Share links utilize a double layer of encryption. We have developed an innovative way to allow file sharing links using an open-source decentralized database called GUN. Support for multiple PGP key types RSA or X25519 (used by Protonmail).Find Keybase and Protonmail user’s by name or email. User search has been improved to also include Protonmail.Just type their username or Protonmail email address. Send to Keybase users and now also Protonmail users directly in the app.Multiple-recipient encrypted messages and files.With our GPG agent we now have the ability to seamlessly use PGP anywhere, locally or in the browser (Chrome, Firefox, Android, and Safari on iPhone). We have greatly improved our webcrypt web application for OnlyKey on-the-go use. We will also have the option to import your own existing PGP keys for more advanced users. Instead of keeping GPG keys on a computer, OnlyKey generates and securely stores your keys off of the computer. Now OnlyKey agent integrates with GPG to let users decrypt files, sign git commits, and even manage passwords (with pass and gopass). This has been our #1 most requested feature, and it is finally here! For years, OnlyKey has supported an SSH agent, allowing secure passwordless SSH authentication. With our upcoming Fall release (to be released later in October) we will introduce some great new features such as: OnlyKey GPG agent For the past year, we have been busy making OnlyKey better, easier to use, and well-suited for remote workers.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |