Wiktor

@wiktor
4 Followers
4 Following
292 Posts
I've migrated to https://metacode.biz/@wiktor (or @wiktor ). Please follow me there (I manually approve so it may take some time).
OpenPGP653909a2f0e37c106f5faf546c8857e0d8e8f074
TestKey198c722a4bac336e9daaae44579d01b3abe1540e
Show threadWiktorMar 27, 2019
@Nitrokey @[email protected] Oh, I misread your previous comment, sorry!
Show threadWiktorMar 27, 2019
@Nitrokey @[email protected] I think you meant "GnuPG does only support *PIV* Cards" as GnuPG definitely supports OpenPGP Card as specified here: https://openpgpcard.org/resources/openpgp-card-3.3.pdf
Show threadWiktorMar 27, 2019
@[email protected] @Nitrokey I'm actually surprised that they advertise S/MIME support in HSM. I guess using HSM for e-mail is like using a cannon to shoot a fly ;) It can be done... but why? :)
WiktorMar 27, 2019

@[email protected] @Nitrokey Because HSMs are used by enterprises in X.509 protocols only - like Certificate Authorities (X.509), client authentication (X.509) etc. etc.

OpenPGP doesn't make sense in a HSM as HSMs biggest advantage over regular smartcards is various specialized protocols (like wrapping key or split keys) are defined and used only in stuff that talks X.509. There are no OpenPGP protocols that utilize it because (probably) there is no demand for that...

WiktorMar 27, 2019

@[email protected] @Nitrokey I don't know you and what do you want to do, so don't take it badly, but HSMs are generally used in servers, for example by CAs (details on https://en.wikipedia.org/wiki/Hardware_security_module). For individuals regular smartcard-like USB devices like Pro 2 would be just fine (I don't know about Nitrokey but Yubikeys are tamper-resistant).

See ya 👋

Hardware security module - Wikipedia

WiktorMar 27, 2019
@[email protected] @Nitrokey Okay then, sorry for the noise.
WiktorMar 27, 2019
@[email protected] @Nitrokey Then it looks like Pro 2 would be perfect for you as it has OpenPGP (GnuPG) and S/MIME (X.509) in one device.
WiktorMar 27, 2019
@[email protected] @Nitrokey Maybe you're looking for something like this: https://shop.nitrokey.com/de_DE/shop/product/nitrokey-pro-2-3
WiktorMar 26, 2019
Paul FawkesleyMar 26, 2019

It's been a while coming...

https://www.fluidkeys.com/blog/release-1.0-simple-pgp-for-teams/

Simple PGP for teams: Fluidkeys 1.0

Today's release makes it simple to use PGP in a team. Fluidkeys simplifies key verification and automates key exchange so any GnuPG-powered tools just work out the box.

Show threadWiktorMar 23, 2019

@barthalion 🤔 I've got over 35k of messages in "All" folder and it works without problems (opening and scrolling through the list, selecting them all...).

I did had frequent "compacting" problems but switching TB to use maildir format (Preferences->Advanced->Message Store Type) and recreating profile fixed it permanently.