Rationale/reasons for splitting Sign and Authenticate into two separate subkeys in a work-environment?

Dirk-Willem van Gulik dirkx at webweaving.org
Tue Dec 22 16:19:47 CET 2020


On 22 Dec 2020, at 16:16, Christian Chavez <x10an14 at gmail.com> wrote:

> Thanks for your reply - but I'm unfortunately lost as to your (what I surmise is your implied) hypothetical use-case?

It is a very common requirement that you find in gov. procurement documents/requirements of cryptographic technology that lives in a chipcard, HSM, etc -- the need to be able to forge signatures for counter intelligence.

Dw.


More information about the Gnupg-users mailing list