CryptoTerminal for Trusted Ethereum Transactions

"""The CryptoTerminal is dedicated to Ethereum transactions. The core security is a removable javacard, which stores keys and performs transaction signatures. It is based on open software and hardware, i.e. Arduino and javacard 3.0.4, what means that many form factors are possible. Nevertheless Ethertrust designs low cost boards. We believe that signature trust is a key feature for the development of Ethereum services. Therefore we developed and published technologies and algorithms in order to get integrity insurance for software and hardware involved in transaction signature. The crypto terminal comprises an AVR 8 bits microcontroller (256KB FLASH, 8KB SRAM, 4KB EEPROM), an USB chip, a Bluetooth module (256KB FLASH), an IPS 320x480 screen touch, a programming token, and removable smartcards (EAL6). The security model comprises the following elements 1) Removable EAL5+/ EAL6 secure element, standard javacard 3.0.4 with software. 2) The crypto terminal can duplicate smartcard content. The smartcard content (keys) is self certified by the card. 3) Card anti-cloning mechanism, based on certificates. 4) Card Content Self Attestation, in order to avoid evil maid attack. 5) The crypto terminal is a firewall. It works in a way similar to bank card payment terminals. 6) Bare Metal. Main-Processor and Bluetooth-Module firmware can be fully flashed. 7) Firmware authentication codes (for main processor, Bluetooth module, programming token) working with remote attestation algorithm. Memory contents are hashed in a pseudo random order. The final result is exor-ed with the computing time. 8) Dynamic PUF fingerprinting for main processor and programming token, in order to detect hardware clones. 9) The programming token is a root of trust. It is used to flash firmware. It embeds a bootloader, whose integrity is proved by software integrity probes."""