Re: private-key backup
Hellow Francesco, On Sat, 2024-02-17 at 10:13 +0100, Francesco Ariis wrote: > Hello Byunghee, > > Il 17 febbraio 2024 alle 14:52 Byunghee HWANG ha scritto: > > I have a question. Where is the safest place to store the private- > > key? > > Are there any best practices for this? > > Do you mean backups? > If so, having at least two backup copies of your private key is good > practice: > - A copy on mass storage. > - A copy printed on paper (ASCII armoured) [1] > > Those two copies should be stored in different places to minimise > risks. Oh.. Good guidance, thanks! > I would also copy/print your revocation certificate. > Does this help? Yes, rev-key thanks! > [1] I actually did this by hand and if you have one of the modern > `ed25519` keys it does not even take that long. > http://www.ariis.it/static/articles/handwritten-pgp-key/page.html I'm reading now it is so professional writing i think. And i'm old guy so it takes time to learn new thing (ed25519). Someday far later, i would be consideration about ed25519. Have a good day ^^^ (⚡🐂🐧⚡⚡) Thanks, Byunghee from South Korea signature.asc Description: This is a digitally signed message part ___ Gnupg-users mailing list Gnupg-users@gnupg.org https://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Second OpenPGP-card
Hello Jacob, Am 17.02.24 um 12:04 schrieb Jakob Bohm via Gnupg-users: [...] I don't know exactly how the situation about this is in Germany. But here in Austria many mobile phone shops have a SIM card punch with which you can punch out a micro-SIM or nano-SIM from a standard-SIM. In some other countries, the mobile providers issues SIMs that are pre-punched to pop out either of the 3 small sim sizes from a full credit-card sized card where key information like the PUK code and serial number are printed. More generally, there is no guarantee that hardware cards not sold through mobile phone carriers keep the actual chip/electronics within the nano-sim area near the middle of the contacts, most notably, NFC compatible cards will often have the NFC antenna outside that area, and it's a matter of luck if the contact card functionality works after cutting on any given hardware model. We are not talking about 'normal SIM cards' for use by mobile telephony but rather about the OpenPGP Smart Card V3.4 in SIM format [1]. This also doesn't have NFC functionality, so it can be punched fairly safely. You just have to do it right best regards Juergen [1] https://www.floss-shop.de/de/security-privacy/smartcards/13/openpgp-smart-card-v3.4 -- /¯\ No | \ / HTML |Juergen Bruckner Xin |juergen@bruckner.email / \ Mail | smime.p7s Description: Kryptografische S/MIME-Signatur ___ Gnupg-users mailing list Gnupg-users@gnupg.org https://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Second OpenPGP-card
On 2024-02-15 18:42, Juergen BRUCKNER via Gnupg-users wrote: Hello Matthias, Am 13.02.24 um 17:32 schrieb Matthias Apitz: We need here 'Microm SIM'. And I talked to the owner of floss-shop. They do not offer a way to pop out Micro SIM. I don't know exactly how the situation about this is in Germany. But here in Austria many mobile phone shops have a SIM card punch with which you can punch out a micro-SIM or nano-SIM from a standard-SIM. In some other countries, the mobile providers issues SIMs that are pre-punched to pop out either of the 3 small sim sizes from a full credit-card sized card where key information like the PUK code and serial number are printed. More generally, there is no guarantee that hardware cards not sold through mobile phone carriers keep the actual chip/electronics within the nano-sim area near the middle of the contacts, most notably, NFC compatible cards will often have the NFC antenna outside that area, and it's a matter of luck if the contact card functionality works after cutting on any given hardware model. Enjoy Jakob -- Jakob Bohm, CIO, Partner, WiseMo A/S. https://www.wisemo.com Transformervej 29, 2860 Søborg, Denmark. Direct +45 31 13 16 10 This public discussion message is non-binding and may contain errors. WiseMo - Remote Service Management for PCs, Phones and Embedded ___ Gnupg-users mailing list Gnupg-users@gnupg.org https://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: private-key backup
Hello Byunghee, Il 17 febbraio 2024 alle 14:52 Byunghee HWANG ha scritto: > I have a question. Where is the safest place to store the private-key? > Are there any best practices for this? Do you mean backups? If so, having at least two backup copies of your private key is good practice: - A copy on mass storage. - A copy printed on paper (ASCII armoured) [1] Those two copies should be stored in different places to minimise risks. I would also copy/print your revocation certificate. Does this help? —F [1] I actually did this by hand and if you have one of the modern `ed25519` keys it does not even take that long. http://www.ariis.it/static/articles/handwritten-pgp-key/page.html ___ Gnupg-users mailing list Gnupg-users@gnupg.org https://lists.gnupg.org/mailman/listinfo/gnupg-users
private-key backup
Hellow, this is my first time greeting you. I'm using GnuPG under Gnome desktop in Debian Sid. I have a question. Where is the safest place to store the private-key? Are there any best practices for this? Thanks in advance! Sincerely, Byunghee from South Korea signature.asc Description: This is a digitally signed message part ___ Gnupg-users mailing list Gnupg-users@gnupg.org https://lists.gnupg.org/mailman/listinfo/gnupg-users