OpenPGP Smartcard Secret Key Stub Recovery

sneak (64) in security • 8 years ago (edited)

TIL: If you use a Yubikey/Yubikey Neo as a gnupg smartcard, you can regenerate the secret key stubs with only the hardware token, provided you put the public key on a keyserver previously (e.g. at generation time).

https://security.stackexchange.com/questions/45094/smart-card-gnupg-what-is-stored-in-my-keyring-how-to-adopt-smart-card

1: Download Public Key

gpg --card-edit --keyserver pgp.mit.edu
fetch
quit

2: Regenerate Secret Stubs

Then, when you run the following command, it will regenerate the secret key stubs needed to decrypt or sign using the card:

gpg --card-status

3: View (Optional)

gpg --list-secret-keys

security yubikey pgp gnupg hsm

8 years ago by sneak (64)

$2.76

Authors get paid when people like you upvote their post.
If you enjoyed what you read here, create your account today and start earning FREE STEEM!

Sort Order:

Trending

[-]

ackza (72) · 7 years ago

i was wondering if those cheap lil thumb drives were actually Safe to use?? I guess so! Theyre always presented as the cheap option on crypto wallet stoie websites!

$0.11

1 vote

[-]

steevc (73) · 8 years ago

thisisasecretmessageIneedtogetayubikeygpgisamazing

$0.00