Questions tagged [openpgp]
An open source version of the PGP (Pretty Good Privacy) encryption / decryption software. Primarily used for securing email communications.
173 questions
3votes
1answer
28views
How to migrate an OLD Yubikey with an OLD PGP key to a NEW Yubikey with a NEW PGP Key? Cross-signing, certifying, etc
A few years ago, I set up my Yubikey with PGP by following Dr.Duhs Yubikey Guide. I created an offline Certify key / Master key on a live usb distro, and then created the corresponding sub keys (S,A,E)...
- 131
1vote
0answers
59views
Managing SSH authorized keys exported from OpenPGP keys
One of the benefits of using OpenPGP authentication subkeys instead of arbitrarily created SSH keyfiles, is key expiration and revocation. While there is plenty of documentation on how to use OpenPGP ...
- 11
1vote
1answer
148views
How can I "update" a pgp public key on a keyserver with a new signature for one of the user id
I have created a pgp keypair and uploaded the public key to keys.openpgp.org. It included my email address. A government service has now verified my citizen ID and signed my pgp public key user id (...
- 113
0votes
0answers
66views
Create a certificate for a PGP key pair [duplicate]
I have to generate a PGP keypair and share the public key with an external provider. Based on how we already handle it with RSA keypair, we are using the concept of trusted CA which issues certificate ...
- 101
1vote
1answer
197views
How exactly does OpenGPG protect private keys?
Today it was time again to generate some new PGP key pairs that will be used for end-to-end-encrypted email. Now I'd like to know how exactly OpenPGP protects the private keys. What I have understood ...
- 599
1vote
1answer
125views
Restructure PGP Keys
How do I restructure my keys from current/old setup to new setup? The new setup would allow better key-management: isolation of primary-key and rotation of sub-keys. Current/Old Setup: PrimaryKey - CS ...
- 31
0votes
1answer
768views
Convert PGP key to X.509?
Can I convert a PGP key to X.509, using OpenSSL or GNUPG? Aren't these only container/wrapper formats?
- 1,857
6votes
1answer
2kviews
Should one really disable AEAD for recent GnuPG created PGP keys?
Apparently, there are some problems with the new defaults that are set when one creates a PGP key using a recent version of GnuPG (2.4). I ran into this after generating a new ECC/ED25519 key to ...
0votes
2answers
1kviews
Backup GPG private key in KeePassXC
In order to keep all my secret in the same place, I would like to store my GPG private key in KeePassXC, under the "Notes" field. Provided that the db file has very good password, is this ...
0votes
1answer
138views
How can we ensure the best practice with mail pgp when the recipient is not using it?
How can we ensure the best practice with mail pgp when the recipient is not using it?, so when Bob send the vary first email to Alex, Bob signing and encrypted it? Q1. In that case, Is Alex able to ...
1vote
2answers
191views
What's the shortest message you need to claim ownership of another message?
Hypothetically, I'd like to demonstrate that I am the owner of a piece of published information. The requirements are the following. The hash/ characteristic string is compact enough (ideally a few ...
- 121
1vote
0answers
254views
Why does the fingerprint of a GPG key change after it is made a sub key?
I recently consolidated some of my independently GPG keys. I used the following the command to edit the oldest key gpg --expert --edit-key <oldest-keygrip> gpg> add-key --keygrip=<another-...
- 111
1vote
0answers
434views
Which PGP fingerprint to share/publish as my digital identity?
The primary secret key should be stored offline and only be used for creating/signing keys. There will be at least two secret keys: one primary key or subkey for signing, and one subkey for encryption;...
- 11
0votes
3answers
195views
Can secret recipients be included in PGP cryptography
Can we be sure that a cleartext message that becomes encrypted by pgp or openpgp which is intended for one-or-more specific recipients doesn't also get secretly decipherable by a third party? Since i ...
1vote
0answers
187views
Using GPG is there a way to label public keys on my OpenPGP keyring?
I am unable to identify certain public keys on my keyring because the key owner generated their public key using a UID that contained no identifiable information. For instance they're completely ...
- 11
