using an OpenPGP card with Java (keytool and jarsigner)

Werner Koch wk at
Mon Jan 13 10:11:44 CET 2014

On Wed,  8 Jan 2014 16:26, hans at said:

> key #3 is for authentication, is there some restriction in the OpenPGP card
> that would prevent the certificate/key combo in position #3 from being used
> for signing?

No.  At least not enforced by the card or GnuPG.

>  What I read there is that in order to use the certificate/key combo in
> position #3 for decrypting emails, the key in position #2 (decryption) must
> match the key in position number #3.  Is there a similar restriction
> for signing?

I can't tell because I have not looked at OpenSC for many years.



Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.

More information about the Gnupg-users mailing list