HN Showcase
Back to browse
GitHub Repository

Open source PKCS#11 module for Serbian ID cards

83 starsZig

Smart card eID driver written in Zig

by ubavic·Feb 27, 2026·2 points·0 comments
Visit ProjectView on HN

AI Analysis

●●●BangerZero to OneNiche GemShip It

Wire-protocol reverse-engineered eID driver removes Windows dependency for Serbs.

Strengths
  • Reverse-engineered PKCS#11 standard by sniffing USB traffic, shipping working implementation today.
  • Multi-platform support (Linux, macOS Intel/ARM) with verified browser integration (Firefox, Chrome).
  • Solves a genuine geopolitical pain point: citizens locked into Windows for state portal access.
Weaknesses
  • Narrow geographic scope limits audience; only relevant for Serbian ID card holders.
  • Security-critical reverse-engineered code may face institutional pushback from Serbian government.
Category
Security
Target Audience

Serbian citizens, system administrators, open-source developers needing eID integration

Post Description

In Serbia, for a long time, the only way to use an eID was by having a Windows machine. Over the last year, I slowly implemented an open source module by reading the PKCS#11 standard and sniffing the USB traffic of the official (Windows) module. The result is a shared library that can be used on *nix systems, removing the need for Windows for many citizens of Serbia.

Similar Projects

Infrastructure●●Solid

A vibe-coded low-level PKCS#11 Terraform provider

Exposes PKCS#11 primitives as Terraform resources — you can C_CreateObject, generate asymmetric and symmetric keys, and manage wrapped keys with slot/token selection filters. The repo also doubles as an interesting LLM experiment: most code was iteratively authored and validated with Claude against a real YubiHSM, which is a clever demo but doesn't by itself change the niche infra value proposition.

Niche GemShip It
blechschmidt
204mo ago