09 Jul 2019
About me
I am a free software activist
FSF member
Email: will come soon
GPG key: will come soon
GPG fingerprint: will come soon
Here is a procedure I came up with in the process of learning how to protect my key.
I know some steps are overkill. But hey, it is about a private key.
Your GPG private key represents your digital identity.
If it is compromised, anyone can decrypt or sign your data or email.
So it is very very very important to make sure it is secure and protected.
In nuteshell
- Start a Tails livecd on a airgaped computer
- Configure the TRNG
- Prepare an encrypted usb stick
- Create the keys
- Make a backup
- Move the SubSecretkeys on a Smartcard
- Stop the airgaped computer
Sources:
- OpenPGP Best Practices
- gpg.conf from Tails
- Tips and ideas from an ex colleague, a guru