Best practice to use several smartcards for a single key?
m.fernandes.business
m.fernandes.business at gmail.com
Mon Dec 14 13:37:11 CET 2020
>
> Date: Sun, 13 Dec 2020 21:22:44 +0000
> From: Andrew Gallagher <andrewg at andrewg.com>
> Message-ID: <9AE37DA2-0E50-46CD-8F16-05C4D55B3BDF at andrewg.com>
>
>
> > On 13 Dec 2020, at 11:08, Nicolas Boullis <nicolas.boullis at ecp.fr>
> wrote:
> >
> > My idea was that there was little chance that a smartcard fails (Werner
> > Koch told me that the failure I experienced was exceptionnal) and if it
> > does I can set up a new encryption key and, using the second smartcard,
> > decrypt all the files that were encrypted for the old key and re-encrypt
> > them for the new key.
>
> How are you going to decrypt the old files if your old smartcard is
> already dead? If you don?t want to lose all access to your encrypted files,
> you *must* keep a backup of your encryption key material at the very least.
> There is no recovering from a deleted encryption private key.
>
> I keep my key material on a Tails encrypted partition in a safe place.
> Alternatively you could keep a paper backup in a safe place. But there?s no
> getting around having some form of backup. What amounts to a ?safe place?
> depends on your threat model of course...
>
> A
>
>
Don't know whether you've considered USB security tokens, but you might
find them less likely to 'die' than smartcards. Once you put your private
key in one of the Nitrokey security-token products, it's supposed to be
impossible to extract the key (not sure whether the same is *as much* true
with the smartcards you are considering).
I agree with Nicolas Boullis, that using duplicate smartcards (or USB
security tokens) might be preferred for back-up purposes. If on the other
hand, you want to back-up your private key in the more conventional way
suggested by Andrew Gallagher, and you are worried about adversaries
gaining access to your backup, you might want to do something like
splitting the key into several parts, and then backing-up each of the parts
with a different friend/colleague, perhaps each of whom is located very far
away from the others: see Shamir's Secret Sharing
<https://en.wikibooks.org/wiki/End-user_Computer_Security/Main_content/Passwords_and_digital_keys#Shamir's_Secret_Sharing>
.
Kind regards,
Mark Fernandes
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20201214/88f72510/attachment.html>
More information about the Gnupg-users
mailing list