Securing multiple keys with one smart card
Bow
dev at nixonnet.org
Tue Jan 6 22:40:50 CET 2026
> Do you mean to replace the passphrase by some kind of encryption
> using a smartcard?
I did, but I understand that is not supported by GnuPG
(currently). I was hoping that I was mistaken about that limitation
or that there was a work-around of some sort.
My goal is have my private key material protected by more than just
a usable (that is, a long but not very long) password. Ideally with
a card as a second factor.
> It is better to use smartcard which allows to store/create several
> keys and not just the 3 keys we specified for the OpenPGP card.
It is my understanding that GnuPG only supports OpenPGP Card smart
cards. Is there another card type that would work?
My card has space for plenty of keys so storing all the keys on-card
is feasible and would work very well for me.
> An updated specification of the OpenPGP card will support more keys.
I saw some discussion in a dev. mailing list about supporting more
than 3 keys, but got the impression it was not likely to happen. Do
you have more information or can you point me to where I can learn
more?
With gratitude,
Bow
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 228 bytes
Desc: not available
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20260106/ff0e31a8/attachment-0001.sig>
More information about the Gnupg-users
mailing list