Why a full keys and sub keys backup are not proposed when keys and sub keys are done "on-card" ?

Werner Koch wk at gnupg.org
Sun Sep 27 13:09:36 CEST 2009


On Sun, 27 Sep 2009 09:38, tux.tsndcb at free.fr said:

> Just for information, I wanted to known why you don't propose a full backup of the three keys (Sign, encryption and authentication) when keys are generated "on-card". Because only encryption key is backupted, a good idea will be perhaps to add also authentication key in the backup.

A lost of a signing or authentication key is usually not that
problematic.  You can simply create a new one and use it from then on.

If you don't have access to the decryption key anymore you won't be
able to decrypt any of the data you decrypted in the past to that key.
Thus some kind of recovery is in most cases very useful.


Shalom-Salam,

   Werner

-- 
Die Gedanken sind frei.  Auschnahme regelt ein Bundeschgesetz.




More information about the Gnupg-users mailing list