Re: hardware tokens and subkey rotation [was: Re: Get your free Yubikey sponsored by Infomaniak (available for free for any DD and DM)]

To: Philipp Kern <pkern@debian.org>, James Bottomley <James.Bottomley@HansenPartnership.com>, debconf-discuss@lists.debian.org
Subject: Re: hardware tokens and subkey rotation [was: Re: Get your free Yubikey sponsored by Infomaniak (available for free for any DD and DM)]
From: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
Date: Thu, 19 Apr 2018 11:44:52 -0700
Message-id: <[🔎] 87muxzqbmj.fsf@fifthhorseman.net>
In-reply-to: <[🔎] 595506f6-3df0-fb29-10f6-e15acd5af804@debian.org>
References: <[🔎] 50ce65ed-2173-7b68-9105-d69755122848@debian.org> <[🔎] e602ce6d-8737-21c2-b583-315145fe3782@debian.org> <[🔎] CAKcpw6XmB4WWjU0z8-_4tfg8wuzRN6DTv-9azVAMrRnV2fekfw@mail.gmail.com> <[🔎] 38813318-f129-f6d0-436c-6b6be3dec25b@debian.org> <[🔎] 871sfgrm7f.fsf@fifthhorseman.net> <[🔎] 12122433-80a1-9aa5-9443-2cc48a418d0b@debian.org> <[🔎] 87d0yyrdcf.fsf@fifthhorseman.net> <[🔎] aafb7d87-668a-cfbd-052e-82605b9531ff@debian.org> <[🔎] 87lgdlq3kd.fsf@fifthhorseman.net> <[🔎] 595506f6-3df0-fb29-10f6-e15acd5af804@debian.org>

[ adding James in Cc, but this is now so far off-topic that it'll be my
  last on-list e-mail to this thread ]

On Wed 2018-04-18 22:55:17 +0200, Philipp Kern wrote:
> I think the work James Bottomley is doing on TPM2 would help with this,
> once merged into gnupg2 at some point in the future. In that case
> multiple key blobs can be sealed to the crypto chip in your laptop and
> you can have as many as you want. And the crypto operations do not run
> on the main CPU.
>
> Alas I was a little disappointed that most of the things he talks about
> were not yet merged upstream in the various projects he provides patches
> for. Despite doing the right thing and proposing them in the right
> venues. ;-)

we should get those patches upstreamed then :)

I've just pinged the gnupg-devel mailing list to see if we can re-start
the discussion of them.

    --dkg

Reply to:

Follow-Ups:
- Re: hardware tokens and subkey rotation [was: Re: Get your free Yubikey sponsored by Infomaniak (available for free for any DD and DM)]
  - From: James Bottomley <James.Bottomley@HansenPartnership.com>

References:
- Get your free sponsored by Infomaniak (available for free for any DD and DM)
  - From: Thomas Goirand <zigo@debian.org>
- Re: Get your free Yubikey sponsored by Infomaniak (available for free for any DD and DM)
  - From: Thomas Goirand <zigo@debian.org>
- Re: Get your free Yubikey sponsored by Infomaniak (available for free for any DD and DM)
  - From: YunQiang Su <wzssyqa@gmail.com>
- Re: Get your free Yubikey sponsored by Infomaniak (available for free for any DD and DM)
  - From: Thomas Goirand <zigo@debian.org>
- Re: Get your free Yubikey sponsored by Infomaniak (available for free for any DD and DM)
  - From: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
- Re: Get your free Yubikey sponsored by Infomaniak (available for free for any DD and DM)
  - From: Thomas Goirand <zigo@debian.org>
- hardware tokens and subkey rotation [was: Re: Get your free Yubikey sponsored by Infomaniak (available for free for any DD and DM)]
  - From: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
- Re: hardware tokens and subkey rotation [was: Re: Get your free Yubikey sponsored by Infomaniak (available for free for any DD and DM)]
  - From: Thomas Goirand <zigo@debian.org>
- Re: hardware tokens and subkey rotation [was: Re: Get your free Yubikey sponsored by Infomaniak (available for free for any DD and DM)]
  - From: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
- Re: hardware tokens and subkey rotation [was: Re: Get your free Yubikey sponsored by Infomaniak (available for free for any DD and DM)]
  - From: Philipp Kern <pkern@debian.org>

Prev by Date: Re: hardware tokens and subkey rotation [was: Re: Get your free Yubikey sponsored by Infomaniak (available for free for any DD and DM)]
Next by Date: Re: Get your free Yubikey sponsored by Infomaniak (available for free for any DD and DM)
Previous by thread: Re: hardware tokens and subkey rotation [was: Re: Get your free Yubikey sponsored by Infomaniak (available for free for any DD and DM)]
Next by thread: Re: hardware tokens and subkey rotation [was: Re: Get your free Yubikey sponsored by Infomaniak (available for free for any DD and DM)]
Index(es):
- Date
- Thread