硝基钥匙启动常见问题

Q: Which Operating Systems are supported?

Windows、Linux和macOS。

Q: What can I use the Nitrokey for?

See the overview of supported use cases.

Q: What are the default PINs?
  • User PIN: 123456

  • Administrator PIN: 12345678

我们强烈建议在使用 Nitrokey 之前将这些 PIN 码/密码更改为用户选择的值。

Q: What is the maximum length of the PIN?

Nitrokey使用PIN码而不是密码。主要区别在于,硬件将尝试的次数限制为三次,而密码则不存在限制。正因为如此,一个简短的PIN码仍然是安全的,没有必要选择一个长而复杂的PIN码。

Nitrokey Storage的PIN码可长达20位,可由数字、字符和特殊字符组成。注意:当使用GnuPG或OpenSC时,可以使用32个字符的PIN码,但不被Nitrokey App支持。

Q: What is the User PIN for?

用户PIN码至少有6位数,用于进入Nitrokey的保护范围。这是你在日常使用中经常用到的密码,例如解密信息、解锁加密的存储空间(仅限NK存储)等。

The user PIN can have up to 20 digits and other characters (e.g. alphabetic and special characters). But as the user PIN is blocked as soon three wrong PIN attempts were done, it is sufficiently secure to only have a 6 digits PIN. The default PIN is 123456.

Q: What is the Admin PIN for?

管理密码至少有8位数,用于改变硝基钥匙的内容/设置。也就是说,在初始化Nitrokey后,你可能不会经常需要这个PIN码(例如,如果你想在Nitrokey Pro或Nitrokey Storage的密码箱中添加另一个密码)。

The admin PIN can have up to 20 digits and other characters (e.g. alphabetic and special characters). But as the admin PIN is blocked as soon three wrong PIN attempts were done, it is sufficiently secure to only have 8 digits PIN. The default PIN is 12345678.

Q: Which drivers/tools can be used?

GnuPG在许多使用情况下都是必需的。它是一个命令行工具,但通常你不需要直接调用它,而是使用另一个具有用户接口的应用程序。

不要将GnuPG与OpenSC或其他PKCS#11驱动并行使用,因为两者可能会相互干扰,并可能导致意外问题。

安装GPG4Win,其中包含Gnu Privacy Assistant(GPA)和GnuPG(GPG)。启动Gnu Privacy Assistant (GPA)或其他应用程序,如你的电子邮件客户端,以使用GnuPG。高级用户可以直接使用GnuPG(命令行)。请注意:联谊会的智能卡与Nitrokey Pro类似,因此本说明也适用于Nitrokey。一般情况下,建议使用官方文档。

Q: Which algorithms and maximum key length are supported?

见下表。

开始

RSA 1024

RSA 2048

RSA 3072

RSA 4096

Curve25519

NIST-P 192

NIST-P 256

NIST-P 384-521

脑池192

脑库 256-320

脑库 384-521

secp192k1

secp256k1

secp521k1

Q: Does the Nitrokey Start contain a secure chip or just a normal microcontroller?

Nitrokey Start是在微处理器中实现的。

Q: How large is the storage capacity?

Nitrokey Start不包含普通数据的存储能力(它只能存储加密密钥和证书)。

Q: How many keys can I store?

The Nitrokey Start can store nine RSA key pairs for three identities. For one identity you need three key pairs for authentication, encryption and signing.