subkeys on smartcard?

Hauke Laging mailinglisten at
Wed Jun 26 15:30:25 CEST 2013

Am Mi 26.06.2013, 15:10:19 schrieb Daniel Pocock:

> Essentially, can anyone confirm why it is recommended to only store
> subkeys on a smart card?

That has little to do with smartcards. Mainkeys should always be stored and 
used safely ("offline"). Smartcards are typically used in an unsafe 
environment. If the mainkey is on the card then it can easily be accessed by 
an attacker. The key cannot be stolen but be abused.

Highly secure mainkeys are the last line of defense. If even they are 
potentially compromised there is nothing left to trust.

PGP: 7D82 FB9F D25A 2CE4 5241 6C37 BF4B 8EEF 1A57 1DF5 (seit 2012-11-04)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 572 bytes
Desc: This is a digitally signed message part.
URL: </pipermail/attachments/20130626/227808e8/attachment.sig>

More information about the Gnupg-users mailing list