use policy of the GnuPG-card
Werner Koch
wk at gnupg.org
Thu Jul 13 15:57:47 CEST 2017
On Thu, 13 Jul 2017 12:49, guru at unixarea.de said:
> How is this supposed to be managed?
You can't do anything about it. The card protects your key against
compromise - but not the use of the key.
For the signing key we have a signature counter and if you can memorize
the count and the number of signatures you did, you have a way to detect
malicious use of that key. Better malware could of course also present
you a different count - checking on a clean machine would detect that,
though.
Salam-Shalom,
Werner
--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 227 bytes
Desc: not available
URL: </pipermail/attachments/20170713/3e5e3e72/attachment.sig>
More information about the Gnupg-users
mailing list