"gpg --card-edit" with multiple card readers (Yubikey)
Michael Richardson
mcr at sandelman.ca
Thu Jul 20 03:47:49 CEST 2023
Andrew Gallagher <andrewg at andrewg.com> wrote:
> The yubikey performs cryptography on the device, but does have a small
> amount of flash memory to store the private key material. The yubikey
> does not provide any method to copy the private key material back off
> that storage, it can only be overwritten or used by the yubikey’s own
> processor.
So I can generate the key on laptop, copy it to multiple yubikey, and do the
crypto on the device, and the yubikey won't let the private key out again.
Once I destroy the copy on my laptop, them I'm good.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 511 bytes
Desc: not available
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20230719/1ca1e50d/attachment.sig>
More information about the Gnupg-users
mailing list