Janusz A. Urbanowicz
alex at bofh.net.pl
Tue Sep 6 17:24:23 CEST 2005
On Tue, Sep 06, 2005 at 11:48:45PM +0930, Alphax wrote:
> > The application is free to do whatever it wants with these objects,
> > given sufficient authentication to the card (PIN). Technically, there is
> > nothing CA can do to prevent you to use your X.509 keys as OpenPGP keys.
> I think I might have seen something like that with a Thawte Freemail
> root certificate or something... it wasn't pretty :(
When Thawte signed PGP keys as a part of Web Of Trust program, they used the
same key in both OpenPGP and X.509 form.
Why you say it wasnt pretty? An actual RSA modulus is well hidden within the
stuff so it doesn't really matter.
mors ab alto
More information about the Gnupg-users