mirror of https://codeberg.org/openpgp/notes.git synced 2024-11-23 16:12:05 +01:00

mark "TODO"-blocks with admonition markup

(also see https://codeberg.org/openpgp/notes/issues/3)

2023-09-26 13:22:12 +02:00

865 B

Raw Blame History

(private_key_chapter)=

Private keys

:class: warning

- Consistently consider private key material as a separate thing from Certificates? (like in pkcs#11?)

Transferable secret keys

https://www.ietf.org/archive/id/draft-ietf-openpgp-crypto-refresh-10.html#name-transferable-secret-keys

Private key operations

The core of private key operations doesn't require access to the whole certificate. A private key subsystem only needs to handle the cryptographic key material.

OpenPGP card for private keys

OpenPGP card devices are a type of hardware security device. They are one popular way to handle OpenPGP private key material. These devices do not store the full OpenPGP certificate.

865 B

Raw Blame History

Private keys

Transferable secret keys

Private key operations

OpenPGP card for private keys

Advanced topics

TSKs: Best practices S2K + S2K migration?

The KOpenPGP attack

865 B Raw Blame History

Private keys

Transferable secret keys

Private key operations

OpenPGP card for private keys

Advanced topics

TSKs: Best practices S2K + S2K migration?

The KOpenPGP attack

865 B

Raw Blame History