"Para asegurar la seguridad de las operaciones sensibles, como el borrado de información, este dispositivo encriptado para guardar contraseñas dispone de un botón físico que debe ser pulsado para confirmar dichas operaciones."
Signet is a compact, open hardware, and free and open source software USB device that safely stores your passwords, bookmarks, contacts, and other personal data in encrypted memory. It’s compatible with MacOS, Linux, Windows, and Android so you can use it on any device with a USB port. The device is smaller than the average house key, making it easy to take with you wherever you go. This makes Signet a practical alternative to storing sensitive data in the cloud. Unlike cloud-based or proprietary solutions, Signet is fully auditable with no proprietary software, firmware, or binary blobs to potentially hide security flaws.
Access your data through a cross-platform application that unlocks your data with your master password. Once unlocked, Signet acts as both a password manager and a general personal information database. Signet acts as a USB keyboard to allow you to easily enter data into web forms. Signet can also type both a username and password to log you into a website instantly. The application features an intuitive graphical interface as well as keyboard based navigation to enable you to perform common tasks quickly.
On desktop operating systems (Windows, GNU/Linux, MacOS), the Signet application software can run as a standalone executable with no driver installation needed, allowing you to quickly access your data at new locations. If you’re away from a computer, you can still access your data on your Android device through a USB host adapter cable.
Unlike pure software solutions, Signet protects your data from any hostile software on the systems you use. Signet will not transmit, modify, or destroy any data without the command being confirmed by a button press when the device flashes. This physically secures the device because only the user can press the device’s button. No system’s security is absolute, but physically requiring a button press to confirm sensitive operations increases the complexity and decreases the potential effectiveness of any attack.
Signet’s personal information database allows you to store whatever data you might want to keep with you and possibly off the cloud. It features built-in types for contacts, bookmarks, credit cards, and miscellaneous account numbers. You can add new data types to the database so you can keep track of whatever else is important to you and you can add fields to individual entries for notes and related data.
Keeping your Signet with you comes with the risk of losing the device. You can configure Signet to regularly back up your data when connected to your primary computer, to either your computer’s hard disk or a designated removable media device such as a USB stick or memory card. The Signet client can then read the backups when you provide the master password, giving you immediate access to your data and the option to upload the data to a replacement device.
To give you full control over your data the Signet application supports conversions between Signet’s internal database format and other popular formats. It currently supports import of login and other information from KeePass databases, pass databases, and CSV files. It supports exporting to unenecrypted formats such as CSV files. Additional importers and exporters are added regularly.
Signet is for anyone who wants the portability and convenience of storing passwords and other sensitive data on the cloud without having to trust closed source software or the security of third-party networks.
Signet could be useful to anyone who has:
|Open source||Non-password data||Cost||Physical portability||Physical security||Offline|
Learn about Signet’s implemenation and features from these videos.
Signet’s PCBAs are currently manufactured by Screaming Circuits. The quality of their work is high and I have yet to receive a defective board from them.
The enclosures are injection molded by ICOMold. The mold has already been made and I can get new parts on relatively short notice. The quality of their parts has consistently been high.
The button parts will be 3D printed in clear Formlabs resin. The button parts need little processing after printing and many button parts can be printed in a single run cheaply.
I assemble and test the parts as they come in and run each board through a basic software test and a mechanical stress test.
At this point, Signet manufacturing risks are pretty low. I have made several production runs of PCBA’s, buttons, and enclosures for Signet. After some tweaking, the fit of the buttons with the PCBAs and enclosures is now consistently good. The main problems so far have come from contamination of the USB connector or tactile switch during assembly. Current testing and cleaning procedures seem to have reduced the occurances of contamination to near zero.
Over the long term there is a risk in terms of the availability of the STM32L442 microcontroller which does not have the best supply. I may have to redesign the board at some point to use another STM32 microcontroller with equal or greater specifications.