More secure than smartcard or cryptostick against remote attacks?
refreshing at tormail.org
refreshing at tormail.org
Mon Feb 4 08:26:28 CET 2013
Are there any external gpg signing devices to make gpg more resistant
against remote control viruses?
Smartcard or cryptostick will not help in my situation.
When I write a mail on my linux machine I suppose it could get compromised
one day. It obviously needs an an online connection, a web browser or mail
client. A zero day or other tricky attack could still defeat it.
I understand while the crypto device is not attached and no pin entered no
one can forge my signature.
But when I send a mail I wrote the the crypto device a virus could make my
screen lie to me and sign and send a malicious message somewhere else.
Against this case I want to defend.
Some bank offer something similar to a smartcard or cryptostick.
USB Shield – best choice of Personal Internet Banking security or ICBC
e-Password Device.
http://www.icbc.com.cn/ICBC/E-banking/SecurityCorner/
The strong part about these devices is that you can check your transaction
before authorizing it.
Are there any devices or systems I could use to verify my mail on a
trusted device with small attack surface before I sign it?
More information about the Gnupg-users
mailing list