Paul Schaub

@tadfisher could you do me a favor and try out PGPainless built from the [hardwareDecryption](https://github.com/pgpainless/pgpainless/tree/hardwareDecryption) branch? There is a [test case](https://github.com/pgpainless/pgpainless/blob/hardwareDecryption/pgpainless-core/src/test/java/org/pgpainless/decryption_verification/CustomPublicKeyDataDecryptorFactoryTest.java#L38-L85) which demonstrates how to use the new API. You...

I further created #321 which might be useful here.

> At least with GnuPG and OpenKeychain, one must have the card available for each decryption. I think this is about very-short-term caching only (recreation of Activities for example).

Let me know if I can assist you in any way. Feel free to provide feedback for the API, so that we can merge a suitable interface into the main...

Woah thats so awesome! Yeah, the `SessionKeyDataDecryptorFactory` did not exist until recently when I proposed it as a pull request to the BC dev team ;) I haven't yet gotten...

> I believe @hko-s had some heuristics that try to avoid this issue but I'm not sure about details... This work can probably be found somewhere in here: https://gitlab.com/openpgp-card

I guess there won't be much shared code between a solution based on hwsecurity and one based on javax.smartcardio. Its probably a sensible idea to go with hwsecurity for now...

> In that case, @vanitasvitae, is it possible to provide at least the associated key ID in HardwareSecurity.DecryptionCallback? That is possible, yes. I will see what I can do.

I made some changes. Unfortunately, the actual decryption methods of the PublicKeyDataDecryptorFactory do not pass on the keyId, so I had to create a custom wrapper interface, which makes the...

As a heads up: I'm planing to do a 1.4.0 release soon, which will include a brand new decryption stream, along with support for hardware tokens for decryption. Let me...