Re: Issue with PIVKey C910 PKI Smart Card
Ah nevermind, looks like that card doesn't support PGP. I have a g10 card coming in a few days. Hopefully that will work. On Wed, Jun 15, 2016 at 1:48 PM, Joshua Terrill <joshterrill@gmail.com> wrote: > I just bought a SCM reader ( > https://www.amazon.com/gp/product/B002N3MM6W/ref=oh_aui_detailpage_o00_s00?ie=UTF8=1) > and PIVKey C910 PKI Smart Card ( > https://www.amazon.com/gp/product/B00SJV2CNK/ref=oh_aui_detailpage_o00_s00?ie=UTF8=1 > ) > > I'm running Windows 10, and installed GPG from GPG4Win ( > https://www.gpg4win.org/) > > I'm looking at all these articles online that say you should be able to > edit the card by typing in gpg --card-edit, but when I type that in, I get > this: > > gpg: detected reader `SCM Microsystems Inc. SCR33x USB Smart Card Reader 0' > Please insert the card and hit return or enter 'c' to cancel: > > So I've tried taking out the card, putting it back in, restarting the > windows service in task manager, unplugging the reader, plugging it back > in, etc. Nothing changes. > > When I try gpg2 --card-edit, I get gpg: OpenPGP card not available: Not > supported. > > I am typing this in, in a windows command prompt running as administrator. > > Any suggestions? I'm trying to get some pgp keys onto the card and use it > for decrypting, signing, etc. > > -- > Josh Terrill // developer > 209-676-7334 > > -- Josh Terrill // developer 209-676-7334 ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Question about getting started with PGP and smart cards
Thanks for the replies, everyone. So what about a solution like Yubikey NEO? I read on their site that you can generate a keypair and put it on the yubikey. But what I'm a little confused about is, once you have the public and private key on the card, how do you use it to encrypt/sign/decrypt things? Excuse my lack of knowledge on this. It all seems pretty cool, and I'm just trying to wrap my head around it. On Mon, Feb 29, 2016 at 8:52 AM, Andrew Gallagherwrote: > On 29/02/16 15:31, Martin Ilchev wrote: > > > > For Windows I installed gpg4win and migrated my linux gpg.conf and keys > > over and it just worked. Also in windows if you want to use putty with a > > smart card you will need a patched putty agent. You can get one from > > here http://smartcard-auth.de/ssh-en.html. It is free to use with > > OpenPGP Smartcards from kernel concepts so a win-win :). > > Unfortunately the developer of that pageant replacement distributes > unsigned binary blobs over plain HTTP. The Windows build of GnuPG 2.1 on > the other hand (linked from the official gnupg site) has a gpg-agent > that can run as a pageant replacement for putty (same idea as ssh-agent > replacement). You don't get all the graphical tools that come with > GPG4Win, but it's a safer (and more future-proof) solution IMO. > > A > > > ___ > Gnupg-users mailing list > Gnupg-users@gnupg.org > http://lists.gnupg.org/mailman/listinfo/gnupg-users > > -- Josh Terrill // developer 209-676-7334 ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Question about getting started with PGP and smart cards
Hello, I am looking to play around/experiment with gnupg and smart cards. From what little research I've done, I've read about OpenPGP smart cards don't reveal private keys, and do all decrypting/signing on the device itself after entering a PIN. Do I have a correct understanding of this, and if so, is this the common/most secure way to use these cards? For simple encrypting, decrypting, and signing what card and card reader would you recommend? I have a windows environment and an ubuntu environment that I can play with it on. Thanks! -Josh ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Just published a browser-based PGP tool
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hey everyone, I just wanted to show you guys a site that I published, it's a browser-based PGP tool that allows you to generate, encrypt, and decrypt PGP messages. There's no server interaction, all of the functionality of the site happens on the client. Right now it's pretty minimal and simple, but I have plans to eventually turn it into a secure mobile messaging app as well as adding more functionality such as signing, verifying, etc. I am looking for some help as I move forward with this and would greatly appreciate it if some of you would be willing to work on this with me; whether it be with coding or brainstorming/offering advice and feedback. I'm still somewhat new to encryption methods and could really use the help! If you are interested, you know my email, and my public key can be found on the contact page of the site if you want to use it. https://www.pgp4web.com/ Thanks, Josh -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJWFXSfAAoJEHZXnHymfkbcD2wQAIVXU/spn3E+zNwJ+tT00UDx B0bSTFJ+22mxxnw+w+9eX8ctrl4fVCa7QWzpe6cu8q8beNGkrmD7gQtq1HgI70H7 PeoKsTz1awDgPlG9u0q8SvFjjdbqvi1woyxoEIeWh9pGbN2yCl+jlxtoLfEAAERN Mtx+ad8OQsEfRHPgK3WngnJQfulGVrZfswjLrtOzWb+iOf8iQ9HZRTF8Y2kJ9mi4 NVaeibyRhM7uZfWhvAen03ixuWzZG9GHMwuL6Y3eIRn5QlIYWIDaCjkX03CKOx1B vkbkVonmr+P7MrN0MoS2m74GurAxqTYSLrtW/ZxshSkYqHIvp46rCFugD4Ajs3Uv H1jAjrP09sJUjDUMaiNYC9kEBqtrL/lhxuUTjAdh3eRMu2GyQMAeTNsb/D2p0ZCI xG56p3LsgAhXPp2DGJCXGBSyI3wO9Uzt5Q3pdMk16PWwPIVLIJ8NXBstME7QjbcW tU/Q6KV4+KMTa0u55X+fJ20LGwuStBdFId4ZoTl6Va/fjAKYwXzm3A1Y8z+EL7Ok vinhbtf2SohUKndAQueSvbCYYamm5oCKtmCox34NaVTfw1LuwfeaAL0ok53loCwn vBlBdJ1WY9gHhfogRnpwgt4SOkMdGY8s/GfKqgY2kcV903faUVKmkyzwFhdqOhQ3 3l771M348CWuPWjgPT74 =k4ia -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Having some issues installing from source
I'm having a hell of a time trying to compile and install gnupg from the source code on an ubuntu machine. I've posted a thread on AskUbuntu here http://askubuntu.com/questions/681041/trying-to-compile-gnupg-from-source if someone would be willing to lend a hand. Thanks, Josh ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users