Smartcard Support, open system security, law,( certificate sig removed)
Mon Aug 25 19:06:01 2003
Content-Description: signed data
On Monday 25 Aug 2003 12:48 am, Mark Kirchner wrote:
> The revocation certificate is created using your own, private key (the
> same one that is / will be stored on your card). It definitely needs
> to be protected and safely stored, because everybody who's got it can
> revoke your public key.
> But in no case a central issuer is required.
It can be REALLY small too - as short as an email signature. It can be prin=
out, kept safe (even in a safe deposit box if you want to) and just typed i=
if you eventually need it. Just a line or two of various characters. Save a=
a file and import alongside your public key (from a keyserver) using any co=
of GnuPG - yours or someone else's if your system becomes compromised at th=
same time as the key.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
-----END PGP SIGNATURE-----