Lock me now certificate revoked4/30/2023 ![]() ![]() If uploading in key server is not required then how my customer can check key is revoked or not? Publishing keys (and updates to keys) is what keyservers are for. ![]() It should be enough to import the revcert into your PGP keyring – it is essentially just a key signature ("self-certification" in GnuPG) that attaches to your main public key in the exact same way as you can have other people sign your key and import those signatures.Īs soon as it is imported, the program should show the key as revoked and you should publish the updated public key in standard locations (keyserver, etc.)Īlso one more doubt is, after revoking keys should I upload at any GPG Key server? But the big difference is that a backup of the private key is much more sensitive, since if stolen it can be used to do anything under your name, whereas the 'revocation certificate' can only be used to do one very specific thing.)Ĭan someone suggest me how to revoke my key with revocation certificate? (Of course, you should always keep a backup of the private key off-site as well. ![]() It's something to store on a USB stick at a friend's house. Instead, the pre-generated revocation certificate exists for situations when the private key is completely lost, not merely when it's compromised. That is, it can always generate new revocation certificates "on the fly". Yes, but as long as you have the actual private key (f it's compromised but not destroyed), you can always use it to revoke itself. As far as I know, if key is compromised then i can revoke the key using revocation certificate. ![]()
0 Comments
Leave a Reply.AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |