Header Image

Protect emails, files, hard drives, server certificates and online accounts using a physical USB key.

  • Prevent Identity Theft
  • Stop Espionage & Mass Surveillance
  • Prevent Data Loss
Made in Berlin, Assembled in Berlin

Nitrokey enables:

  • Secure Login

    Login to websites (e.g. Google, Facebook) using secure One Time Passwords (OTP), U2F or ordinary static passwords. Login to computers and network services (e.g. SSH) using certificates.

    read more
  • Email Encryption

    Encrypt your emails with GnuPG, OpenPGP, S/MIME or your favourite email client. Keep your secret keys secure on your Nitrokey.

    read more
  • Encrypted Mobile Storage

    Carry important data with you, hardware-encrypted on your Nitrokey Storage device (8-64 GB). Compatible with Windows, Linux and Mac OS.

    read more
  • Hard Disk & File Encryption

    Encrypt your hard disks and files using TrueCrypt/VeraCrypt, GnuPG Tools and more. Keep your secret keys secure on your Nitrokey.

    read more
  • Server Protection

    Protect your server certificates by using up to 43 ECC and 35 RSA keys with the Nitrokey HSM. Ideal for security servers.

    read more
Illustration: How Nitrokey works

How Nitrokey works

Protect emails, files, hard drives, server certificates and online accounts using cryptography. Your secret keys are always stored securely in the Nitrokey hardware and can't be stolen. The device is PIN-protected and is secured against hardware attacks. Backups protect against loss.

Nitrokey is better:

  • High Security

    Your secret keys are stored in the tamper-resistant and PIN-protected device and are secured against computer viruses, loss and theft. RSA keys of up to 4096 bit and AES-256 are supported.

    read more
  • Independent Security Assessment

    The auditing company Cure53 performed an intensive security review of the Nitrokey Storage. The security expert summarize their final result with "Nitrokey is capable of functioning properly and securely". The complete final report can be downloaded publicly (FirmwareHardware).

  • Open Source

    Both hardware and software are open-source, free software and allow independent security reviews. Customisable, no vendor lock-in, no security via obfuscation, no hidden security issues!

  • Complete USB plug

    Unlike some competitors, Nitrokey contains a complete and standard compliant USB plug. This ensures thousands of insertions without connectivity issues.

  • No Backdoors - No NSA

    Installed firmware can be exported and verified, preventing attackers from inserting backdoors into products during shipping. Nitrokey is open-source and free of backdoors. Secret keys are generated only by you and we have no access to your private information.

  • Plausible Deniability

    The only hardware solution with hidden encrypted storage. This allows you to plausibly deny the existence of encrypted data, for example during border controls.

  • Easy Integration

    Nitrokey uses open interfaces to enable its easy integration with your personal requirements. Custom solution can be provided on request.

  • Better Than Software

    The Nitrokey hardware functions independently of any operating systems and protects your secret keys against theft, loss, user mistakes and computer viruses.

The Nitrokey Family

  Nitrokey Storage 2 Nitrokey Pro 2 Nitrokey Start Nitrokey HSM Nitrokey FIDO U2F
Made in Berlin, Assembled in Berlin Nitrokey Storage Nitrokey Pro Nitrokey Start Nitrokey HSM Nitrokey U2F
Open source
Tamper-resistant smart card    
S/MIME email and hard disk encryption (X.509, PKCS#11)  
OpenPGP/ GnuPG email encryption    
Secure login (One Time Passwords)      
Password Manager      
Encrypted mass storage        
Hidden volumes        
Firmware updates and verification      
RSA key length [bit] 2048 - 4096 2048 - 4096 2048** 1024 - 2048  
Number of RSA key pairs 3* 3* 3* 20  
ECC key length [bit] 256 - 521 256 - 521 256 192 - 320  
Elliptic curves NIST P, Brainpool NIST P, Brainpool NIST P, Curve25519, SECG NIST P, Brainpool, SECG  
Number of ECC key pairs 3* 3* 3* 31  
PKI/CA management features        
Secure login (FIDO U2F)        
Factsheet Nitrokey Storage 2 Nitrokey Pro 2 Nitrokey Start Nitrokey HSM Nitrokey FIDO U2F
Price Starting from € 109.00 € 49.00 € 29.00 € 59.00 € 22.00
  Buy Buy Buy Buy Buy

* Stores the key pair (RSA or ECC, if available) for one person/identity only. Technically these are 3 key pairs because GnuPG uses subkeys.

** 4096 bit are supported but each operation takes ca. 8 seconds.

Our Customers

ABB Group Österreichische Staatsdruckerei Diehl Kühne + Nagel Nvidia Red Hat Max-Planck-Gesellschaf Uber Technische Universität Wien BBC Google SUSE DFN-CERT Cisco VISA Bosch Ministère de l'Intérieur UBS Diebold Nixdorf Adobe Systems Linde AG Mozilla T-Systems GE Healthcare Dropbox


  • Now it's finally time to launch our brand-new Nitrokey FIDO U2F. After uncounted hours of hard work, we are very proud to present you our newest product. The Nitrokey FIDO U2F does two things for you: First, it protects your most precious accounts at home and at work. Second, it makes it easy as never before to use two-factor authentication.
    06th Nov 2018
  • The new Nitrokey Pro 2 is now available and can be ordered in our online shop! Nitrokey Pro 2 includes the following new features and improvements:
    29th Oct 2018
  • We are partnering with the open source hardware manufacturer Purism—known for its Librem laptop series—to build the Purism Librem Key. This partnership is a milestone on our mission to improve the users' privacy and security with free and open source hardware and software.
    01st Oct 2018

Nitrokey - Made in Berlin