OpenPGP Secret Key Transfer
guilhem at fripost.org
Mon Jun 5 16:12:15 CEST 2017
On Sun, 04 Jun 2017 at 17:04:59 -0400, Daniel Kahn Gillmor wrote:
> On Fri 2017-06-02 17:54:46 +0200, Werner Koch wrote:
>> On Fri, 2 Jun 2017 17:14, look at my.amazin.horse said:
>>> Moving secret keys between devices at a meeting, is this a common use
>>> case? Can you elaborate?
>> Project releated (sub)keys. Not very common today but I hope in the
>> future this will be a standard practise.
> This idea is neat; but it sounds speculative and only useful to a
> certain subset of people (not everyone is involved with projects that
> use split or shared keys).
For signature verification I think we would need some mechanism to tell
GnuPG to limit the scope of this or that subkey. FWIW I brought that up
to gnupg-devel in autumn 2015, and proposed to use certification
notation to limit subkey scopes:
(I wish I could limit the scope of the signing subkey I use for Debian
packages for instance, and take it offline. ;-)
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 833 bytes
Desc: not available
More information about the Gnupg-devel