1
1
mirror of https://github.com/privacyguides/privacyguides.org.git synced 2026-07-10 10:24:25 +00:00

update: Nitrokey section on OTP secrets (#3252)

Signed-off-by: fria <fria@privacyguides.org>
Signed-off-by: Daniel Gray <dngray@privacyguides.org>
This commit is contained in:
Jan Knittel (Nitrokey)
2026-07-09 14:02:44 +00:00
committed by Daniel Gray
parent 18a5685941
commit db20f733e8
+1 -1
View File
@@ -102,7 +102,7 @@ Nitrokey models can be configured using the [Nitrokey app](https://nitrokey.com/
<div class="admonition warning" markdown>
<p class="admonition-title">Warning</p>
Excluding the Nitrokey 3, Nitrokeys which support HOTP and TOTP do not have encrypted storage, making them vulnerable to physical attacks.
Starting with Nitrokey 3, HOTP and TOTP secrets are additionally encrypted at rest. Older Nitrokey devices like Nitrokey Pro 2 and Nitrokey Storage 2 did not encrypt OTP secrets at rest, which makes the OTP secrets on these devices potentially vulnerable to physical attacks.
</div>