Managing Subkeys for Professional and Personal UIDs

Mike Cardwell gnupg at
Mon Apr 28 17:10:31 CEST 2014

* on the Mon, Apr 28, 2014 at 02:40:29PM +0100, MFPA wrote:

>> I solve this problem using an OpenPGP smart card. My
>> PGP key never touches my work machine, so I never have
>> to worry about it being compromised.
> Many employers would not allow you to plug in hardware, so you
> couldn't use an OpenPGP smart card reader. And many would not allow
> GnuPG at all if it was not something they generally used. Or if they
> did use it, many would insist on key escrow or additional decryption
> key, or using a key they generated for you.

Many companies also make you wear a suit and tie and use Internet
Explorer 7. I do not work for these companies.
>> When I left my previous job, I revoked the UID containing the email
>> address assigned by that company, and then added the new UID for
>> the new company.
> How did the previous employer feel about not having access to any
> of your archived messages/documents?

This is what we call a loaded question.

I did not make any data that belonged to the company, unavailable to
the company, via any methods, be that encryption, or deletion. My use
of OpenPGP was well known, and at no point was it discouraged.
Several of my colleagues also used OpenPGP, although I don't believe
any of them used a smart card.

Mike Cardwell
OpenPGP Key    35BC AF1D 3AA2 1F84 3DC3   B0CF 70A5 F512 0018 461F
XMPP OTR Key   8924 B06A 7917 AAF3 DBB1   BF1B 295C 3C78 3EF1 46B4
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 598 bytes
Desc: Digital signature
URL: </pipermail/attachments/20140428/fe40c8e1/attachment-0001.sig>

More information about the Gnupg-users mailing list