Use multi-usage key in authentication slot on HW-key for encryption

Felix Mayr felix.mayr at tum.de
Sat Apr 16 13:10:06 CEST 2022


> The OpenPGP card standard offers three slots. Each slot is single usage. The
> key in the first slot is used for signing (data and keys) exclusively, the key
> in the second slot is used for encryption exclusively, and the key in the
> third slot is used for authentication (i.e. with ssh) exclusively.
Well, and I reckon this is relatively hardcoded into GnuPG?

> If your Yubikey supports PIV then you can store more keys with PIV. You need
> GnuPG 2.3 for full multi-card and multi-card-app (e.g. OpenPGP _and_ PIV)
> support.
That sounds great! Is there any documentation on how to use both the PGP 
and PIV-card simultaneously?

Regards,

Felix



More information about the Gnupg-users mailing list