gpgsm and expired certificates

Uwe Brauer oub at mat.ucm.es
Sat Oct 26 22:03:37 CEST 2013


>> "Werner" == Werner Koch <wk at gnupg.org> writes:

   > On Sat, 26 Oct 2013 12:02, oub at mat.ucm.es said:
   >> Can gpgsm deal with this situation?

   > Sure.  That is a very common situation.

   > Although I am myself not using gpgsm for mail encryption, I use it to
   > maintain all kind of X.509 certificates.  FWIW, gpgsm passed several
   > conformance tests with quite good results [1] and was recently approved
   > for secret communication (at the Germany's entry level VS/NfD).

Good, so if I understand that correctly once I have the new certificate
then I only have to import it into gpgsm and gpgsm will know by the date of the
certificate which certificate to use for which message?

    -  old for old messages

    -  the new for the new messages

thanks

Uwe Brauer 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 5556 bytes
Desc: not available
URL: </pipermail/attachments/20131026/8558215b/attachment.bin>


More information about the Gnupg-users mailing list