Whishlist for next-gen card

Ville Määttä mailing-lists at asatiifm.net
Fri Feb 20 16:07:12 CET 2015


On 20.02.15 15:27, NdK wrote:
>>> 5 - possibility to export private keys to user-certified devices
>> > That pretty much defeats the point of using a smart card in the first place.
> That's not "uncontrolled export", and in fact…
> …(snip)…
> while importing a key (so that you "can't" alter -actually
> it's just "really hard", but doing that should invalidate signatures on
> your master key!- the policy by exporting from a device and importing on
> another).
> 

There in lies the problem. It's really hard -> it's doable.

What is the use case that absolutely needs exportable master keys?

-- 
Ville

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 648 bytes
Desc: OpenPGP digital signature
URL: </pipermail/attachments/20150220/12d0c549/attachment.sig>


More information about the Gnupg-users mailing list