The Nitrous Key features NFC, USB-A, FIDO2, one-time passwords, OpenPGP smart card, Curve25519, password manager, Common Criteria EAL 6+ certified secure element, firmware updates. This reliably protects your accounts against phishing and password theft, and encrypts your communications and data. With strong hardware encryption, trustworthy thanks to open source, quality made in Germany.
Use Cases
For private and corporate use – protection against mass surveillance and hackers
- Passwordless Login: Securely log into services like Microsoft (Office 365) and Nextcloud without a password using Nitrous Key.
- Two-Factor Authentication (2FA): Protect online accounts with FIDO2, FIDO U2F, or OTP to secure logins, even if your password is compromised.
- Phishing Protection: FIDO automatically verifies domain authenticity, preventing phishing attacks.
- Mobile Usage: Access accounts securely on Android and iPhone via NFC.
- Data Encryption: Encrypt emails with GnuPG, OpenPGP, or secure files using tools like TrueCrypt or VeraCrypt. Private keys are safely stored on the Nitrous Key and cannot be extracted.
For companies – protection against hackers and industrial espionage
- Passwordless Logon to Windows 10: Employees can log in to Windows 10 Pro computers using Nitrous Key, without needing a password.
- Secure IT Administration: Store cryptographic keys securely, use SSH for server administration, and protect the integrity of hardware products and IoT devices.
For IT administrators and security experts – protect critical infrastructure
- Administering servers securely with SSH: Your key is PIN protected and cannot be exported/stolen from the Nitrokey. This eliminates the insecure and annoying synchronization of key files on client systems.
- Protect Internet of Things (IoT) and own products: Ideal for remote maintenance and ensuring product authenticity.
- Store cryptographic keys securely: Store cryptographic keys and certificates securely.
- Protect computer BIOS integrity: Using the Nitrokey and Measured Boot, the integrity of the computer BIOS/firmware is verified. The colored LED of the Nitrokey signals whether the BIOS has integrity (green) or whether tampering has been detected (red). Compatible e.g. with Nitrous Laptop.
Features
- FIDO2 Passwordless Login: Provides an easy-to-use and highly secure method of account protection.
- OTP for Identity Theft Protection: Generate one-time passwords to serve as a second layer of authentication.
- Encrypted Key Storage: Safeguard private keys for emails, hard drives, and files. Backups ensure your keys are never lost.
- Password Manager: Store passwords securely within the Nitrous Key’s encrypted manager.
- Integrity Checks: Verify BIOS integrity with tamper detection via LED indicators, compatible with systems like NitroPads.
Security Technology
The Nitrous Key uses a new security architecture based on Rust, a memory-safe programming language, with firmware developed using the Trussed framework for critical embedded systems. It employs a certified secure element (EAL 6+), ensuring high security and trust. The device also includes secure boot features, ARM TrustZone, and a cryptographic memory module (SE050).
Supported Systems and Interfaces
- Operating Systems: Windows, macOS, Linux, BSD, Android, iOS
- Interfaces: FIDO2, FIDO U2F, OpenPGP, Microsoft CSP, X.509, and more.
Technical Specifications
- Authentication: WebAuthn, FIDO2, FIDO U2F, OTP (RFC 4226, RFC 6238)
- Hardware: USB-A or USB-C, NFC, physical random number generator, touch button, four-color LED
- Cryptography: RSA (2048-4096 bit), AES (128/256), elliptic curves (P-256, P-384, P-521), Curve25519, Ed25519
- Certification: CC EAL6+ certified secure element, FCC, CE, RoHS, WEEE compliance.
The Nitrous Key offers unparalleled security for both individual users and enterprises, ensuring protection from phishing, password theft, and unauthorized access.