OpenPGP card and signing

Remco Post r.post at sara.nl
Wed Mar 15 00:29:00 CET 2006


Michael Bienia wrote:
> On 2006-03-14 08:23:58 +0100, Remco Post wrote:
>> Michael Bienia wrote:
>>> Hello,
>>>
>>> does signing with the OpenPGP card only work with SHA1 as digest-algo?
>>>
>>> With SHA1 and RIPEMD160 gpg asks for the PIN but only SHA1 generates a
>>> working signature. Trying RIPEMD160 I get:
>>> | gpg: checking created signature failed: bad signature
>>> | gpg: signing failed: bad signature
>>> | gpg: signing failed: bad signature
>>>
>> From the basiccard website I read that it only supports sha-1, so this
>> might be true. I noticed the same just recently.
> 
> A friend who uses his OpenPGP card with enigmail under windows can
> successfully create a RIPEMD160 signature.
> I could also create one if I use gpg with pcscd.
> 
> Can someone explain me, why it works if I use gpg with pcscd and not if
> I use gpg alone?
> 

gpg alone means gpg with ccid I guess, this might indicate a difference
in implementation between the ccid and the pcsc parts of the
implementation, where the ccid part might not work as designed...


> Michael
> 
> _______________________________________________
> Gnupg-users mailing list
> Gnupg-users at gnupg.org
> http://lists.gnupg.org/mailman/listinfo/gnupg-users


-- 
Met vriendelijke groeten,

Remco Post

SARA - Reken- en Netwerkdiensten                      http://www.sara.nl
High Performance Computing  Tel. +31 20 592 3000    Fax. +31 20 668 3167
PGP Key fingerprint = 6367 DFE9 5CBC 0737 7D16  B3F6 048A 02BF DC93 94EC

"I really didn't foresee the Internet. But then, neither did the
computer industry. Not that that tells us very much of course - the
computer industry didn't even foresee that the century was going to
end." -- Douglas Adams



More information about the Gnupg-users mailing list