piv-agent icon indicating copy to clipboard operation
piv-agent copied to clipboard

Published 20 hours ago verified publisher icon smlx

RSA / x25519 / ed25519 keys for gpg hardware?

Open jonathancross opened this issue 4 years ago • 3 comments

Am I correct that piv-agent does not support the use of gpg subkeys of type RSA / x25519 / ed25519 stored in a hardware device such as a Yubikey? This is my impression from https://github.com/smlx/piv-agent#gpg-agent

jonathancross avatar Nov 10 '21 00:11 jonathancross

Correct.

RSA is by choice and I don't plan to implement it because there is simply no good reason to use RSA today if at all possible.

Curve25519 support is planned, but I don't currently have any hardware which supports it. Yubikey doesn't, for example. I believe Solov2 does, but cannot confirm until I actually have the hardware.

smlx avatar Nov 10 '21 02:11 smlx

Ah, yes the Yubikey supports Curve25519 for OpenPGP, but maybe not PIV.

jonathancross avatar Nov 10 '21 02:11 jonathancross

As per https://github.com/solokeys/solo2/discussions/88 the Solo v2 firmware temporarily has the PIV applet disabled.

As soon as the PIV support is re-enabled I'll take a look at this.

smlx avatar Dec 16 '21 04:12 smlx