Multiple clients

Arnaud Ongenae aongenae at gmail.com
Thu Aug 7 16:55:03 CEST 2008


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

for me the question is different, how many person will have to deal
with the keys ? The better is one pair of key per person ! so only one
person know the secret...
if you have five person, one for each bank, the better will be 5 key.
because if you change the person in the future, you'll have some
problem (change the key in each bank)
if you have one person for all bank, so one pair of key seems good...

It is not a good idea that different person know the secret...
The best is to have one pair for each person, even if there are 100
persons that will participate... for the bank, encrypt for one or 100
is the same job, and it wil be easier for you to change one person in
teh organisation (only ask the bank not to encrypt with his key
anymore...)

I don't know if I answer to you... but in security, you have to deal
with copromise between user-friendly and security level

Have a nice day

- --
Arnaud

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (Darwin)
Comment: http://getfiregpg.org

iQEcBAEBAgAGBQJImwy8AAoJEFgy9SDyxO8haNUH/2VK5Asn8+pkFqcv4WuUikW/
Fg0a6BzAiTRKztAZIqA4U0wDZULnx3/NK5HSWiXpMPcIA5L/YTJLnVgK3lUQhD12
J6JmPT2OAVb1QfaJURYDsEwqfy+glKlid4Jf+DntlZ5p2jWXRxtk1PqUS10u7Pg+
6bMKVKPNaqnqI3Y0v61XIsjw5+U/eoPx13vVm4Z3sOtf5T+8nqR9VqlDeLmqpTLS
a1hk9qzLJ0WVMQZGnecSkMrMKE5IN1wHiXvL+IsgmR7DuTWe6ONz1k9/h4aouY6A
4vxKTXoOIH/UPTRC07ROGwkq1RthkTpk+H07NYOnHDjTIVSCa0r2a9Jago+8R4Y=
=cOQM
-----END PGP SIGNATURE-----


On Wed, Aug 6, 2008 at 04:27, proxy <ganeshyz at yahoo.com> wrote:
>
> Hello, I am trying to understand the Best Practice for the follwing situation
>
> We have 5 bankers and we are going to receive encrypted bank statements from
> them. Now the question here is should we need to have Separate Public Keys
> for each bank (and corresponding Private keys) i.e. 5 different public keys
> OR for all the Bankers we are going to use one single public key for our
> whole orgranization?
>
> Which approach we need to follow? What are all the Pros and cons of the
> above two designs? any other approach is available?
>
> appreciate your help.
>
> KB
> --
> View this message in context: http://www.nabble.com/Multiple-clients-tp18843258p18843258.html
> Sent from the GnuPG - User mailing list archive at Nabble.com.
>
>
> _______________________________________________
> Gnupg-users mailing list
> Gnupg-users at gnupg.org
> http://lists.gnupg.org/mailman/listinfo/gnupg-users
>



More information about the Gnupg-users mailing list