Hi all, for those who use already modern age or rage (the Rust version) instead of GnuPG, there is now a plug-in available, which allows you to store your age secret key on a Yubikey. https://github.com/str4d/age-plugin-yubikey I tested it with age first, but age currently does not support it and will have it in the next version. It already works fine with rage. Regards Stefan
Problem with all these "amazing" hw privkey stores is when they fail, which all of them will, especially by emp or solar flare or silicon or flash rot, users lose access to their keys. Of course the vendors never disclose this fact in their advertising spam, none of the shillers even grasp it. All the users coin, email, etc... gone forever. Nothing beats paper or otherwise redundantly and indestructably backed up and hidden.
On Mon, Jan 10, 2022 at 8:24 AM grarpamp <grarpamp@gmail.com> wrote:
Problem with all these "amazing" hw privkey stores is when they fail, which all of them will, especially by emp or solar flare or silicon or flash rot, users lose access to their keys. Of course the vendors never disclose this fact in their advertising spam, none of the shillers even grasp it. All the users coin, email, etc... gone forever. Nothing beats paper or otherwise redundantly and indestructably backed up and hidden.
Sure, nothing beats, for example, pencil and paper, when it comes to unbreakable quantum computer resistant encryption, when using compromised online devices. *BUT* I was referring to Yubikeys, because one can purchase many and use them besides storing a secret key for decryption also for Gmail, Twitter etc. 2FA, which you can not do with paper, let alone that you can't steal a secret key on a Yubikey remotely, when your online device is compromised. And last but not the least nobody is forced to use them. Regards Stefan
participants (2)
-
grarpamp
-
Stefan Claas