"gpg --card-edit" with multiple card readers (Yubikey)

Michael Richardson mcr at sandelman.ca
Thu Jul 20 03:47:49 CEST 2023

Andrew Gallagher <andrewg at andrewg.com> wrote:
    > The yubikey performs cryptography on the device, but does have a small
    > amount of flash memory to store the private key material. The yubikey
    > does not provide any method to copy the private key material back off
    > that storage, it can only be overwritten or used by the yubikey’s own
    > processor.

So I can generate the key on laptop, copy it to multiple yubikey, and do the
crypto on the device, and the yubikey won't let the private key out again.
Once I destroy the copy on my laptop, them I'm good.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 511 bytes
Desc: not available
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20230719/1ca1e50d/attachment.sig>

More information about the Gnupg-users mailing list