On 13.12.2018 08:13, Werner Koch wrote: > If you care about side channel attacks, NFC communication is a bad idea > because the decrypted session key can easily be picked up. To avoid > this, /secure communication/ needs to be used but that is cumbersome > because this requires a shared secret between host and card.
Shared secret or asymmetric authentication with secure messaging like Chip Authentication from BSI TR-03110. That also helps to transmit the PIN securely. _______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
