restoring SmartCard key with off-card copy
Achim Cloer
achim.cloer at cloer.com
Thu Oct 6 16:24:07 CEST 2011
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Dear all,
dear Peter,
> Restore the given file to a card. This command may be used to
> restore a backup key (as generated during card initialization) to a
> new card. In almost all cases this will be the encryption key. You
> should use this command only with the corresponding public key and
> make sure that the file given as argument is indeed the backup to
> restore. You should then select 2 to restore as encryption key. You
> will first be asked to enter the passphrase of the backup key and
> then for the Admin PIN of the card.
It seems that the backup file only contains one key: This was on my
original Card the encryption key. But this is shown as encryption
_and_ signature key and has a different Key-ID than the one I published.
The Authentication Key is empty.
I succeeded to write back this encryption key to the card. But PGP is
writing the same key to two positions in the card. So now I have a
Card with the same key in "encryption" and "signature".
But I still can't use the Card: After Importing the backup key, my gpg
is still asking for my old SmartCard. How can I tell GPG to use the
new smart card? It seems to be necessary to modify the sec-key on the
computer. But how. I can't find any documentation...
Sorry, but I really don't understand what to dot. How can I restore a
Card so that I can use it as my original card before.
If there is now HowTo, I promise to write one, once I found out how it
works...
Danke!
Gruß,
Achim
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.17 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/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=CVXu
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list