Re: Another problem of large key generation

2012-08-13 Thread Werner Koch
On Thu, 9 Aug 2012 13:47, patrick@nerim.net said: Scdaemon[4755]: please wait while key is generated ... Scdaemon[4755]: ccid_transceive failed: ( 0x1000a) Scdaemon[4755]: apdu_send_simple(0) failed: card I/O error Scdaemon[4755]: key generation failed: Card error If you want to look

RE: [english 99%] Re: Another problem of large key generation

2012-08-13 Thread Patrick
Hi I have been validating one level of debug scdaemon[4059]: DBG: ccid-driver: [0010] 00 40 05 00 CA 00 scdaemon[4059]: DBG: ccid-driver: [0016] C4 00 4B scdaemon[4059]: DBG: ccid-driver: RDR_to_PC_DataBlock: scdaemon[4059]: DBG: ccid-driver: dwLength ..: 13 scdaemon[4059]: DBG:

Elliptic Curve Cryptography

2012-08-13 Thread Sam Smith
I read recently about Elliptic Curve Cryptography and how it provides much stronger security with much smaller public key sizes. Does anybody know if Public Key Crypto has any plans to move to this with an update to the standard?

Re: [english 99%] Re: Another problem of large key generation

2012-08-13 Thread Werner Koch
On Mon, 13 Aug 2012 15:18, patrick@nerim.net said: scdaemon[4059]: DBG: ccid-driver: PC_to_RDR_XfrBlock: scdaemon[4059]: DBG: ccid-driver: dwLength ..: 5 scdaemon[4059]: DBG: ccid-driver: bSlot .: 0 scdaemon[4059]: DBG: ccid-driver: bSeq ..: 129

Re: Elliptic Curve Cryptography

2012-08-13 Thread Werner Koch
On Mon, 13 Aug 2012 15:19, smick...@hotmail.com said: Does anybody know if Public Key Crypto has any plans to move to this with an update to the standard? The OpenPGP protocol support ECC (rfc6637) and the latest GnuPG beta versions provide an implementation. X.509 (e.g. S/MIME) supports

RE: Elliptic Curve Cryptography

2012-08-13 Thread Sam Smith
So will it be possible for me to generate an ECC key when the beta becomes stable? I use S/MIME for everything when I use GPG with Enigmail. Seems like I should create an ECC key and start using that. Will the manual be updated with the commands for creating an ECC key? From: w...@gnupg.org

Re: Elliptic Curve Cryptography

2012-08-13 Thread Peter Lebbing
On 13/08/12 15:19, Sam Smith wrote: Does anybody know if Public Key Crypto has any plans to move to this with an update to the standard? Yes, that is planned, indeed with an update to the standard. Search this mailing list for terms like elliptic and ECC, and you will find messages about it.

Re: Elliptic Curve Cryptography

2012-08-13 Thread Hubert Kario
On Monday 13 of August 2012 09:42:04 Sam Smith wrote: So will it be possible for me to generate an ECC key when the beta becomes stable? I use S/MIME for everything when I use GPG with Enigmail. Seems like I should create an ECC key and start using that. Will the manual be updated with the

RE: [english 100%] Re: [english 99%] Re: Another problem of large key generation

2012-08-13 Thread Patrick
Hi I made a mistake, I bought last week the 332, not the 532 There are no updates on the scm site for this item Cheers -Original Message- From: Werner Koch [mailto:w...@gnupg.org] Sent: Monday, August 13, 2012 3:29 PM To: Patrick Cc: gnupg-users@gnupg.org Subject: [english 100%] Re:

Re: Elliptic Curve Cryptography

2012-08-13 Thread Kristian Fiskerstrand
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 08/13/2012 03:42 PM, Sam Smith wrote: So will it be possible for me to generate an ECC key when the beta becomes stable? I use S/MIME for everything when I use GPG with Enigmail. Seems like I should create an ECC key and start using that.

Re: Elliptic Curve Cryptography

2012-08-13 Thread Kristian Fiskerstrand
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 08/13/2012 03:19 PM, Sam Smith wrote: I read recently about Elliptic Curve Cryptography and how it provides much stronger security with much smaller public key sizes. Does anybody know if Public Key Crypto has any plans to move to this with

Re: Elliptic Curve Cryptography

2012-08-13 Thread HardKor
HI Sam, You can already use Elipric Curve Crypto wiith X.509 cryptosystems (TLS/SSL). It's faster than RSA and use slamer keys so it make you save bandwidth and CPU load. Try openssl speed to get benchmarks of the diffrent algorithms and see by yourself. HardKor 5845 16EB 0589 B89A 5E6E 98DE

RE: Elliptic Curve Cryptography

2012-08-13 Thread Sam Smith
Oh, phooey. You are right. I was mistaken. I meant PGP/MIME. I guess no ECC then? Date: Mon, 13 Aug 2012 16:07:28 +0200 From: kristian.fiskerstr...@sumptuouscapital.com To: smick...@hotmail.com CC: gnupg-users@gnupg.org Subject: Re: Elliptic Curve Cryptography -BEGIN PGP SIGNED

Re: Elliptic Curve Cryptography

2012-08-13 Thread John Clizbe
Sam Smith wrote: Oh, phooey. You are right. I was mistaken. I meant PGP/MIME. I guess no ECC then? No... S/MIME -- X.509. PGP/MIME -- OpenPGP. ECC is part of OpenPGP with the issuance of RFC 6637 at the first of June this year. As Kristian pointed out, the GnuPG Development line currently

Using a different OpenPGP card/subkeys with same master key

2012-08-13 Thread Olivier Mehani
Hi, I am using two OpenPGP cards from Kernel Concepts. Each contains different subkeys created from the same master key. I tend to use one at work, and the other at home. Now, the work one is currently not available (lost it somewhere), so I'm using the home one at work. I reconfigured poldi

Re: Using a different OpenPGP card/subkeys with same master key

2012-08-13 Thread Hauke Laging
Am Di 14.08.2012, 01:11:52 schrieb Olivier Mehani: The card is properly detected, and the signature key (for this example) that I usually use at home is properly listed, but whenever I try to sign something, GPG asks for the other card. This seems to be related to the problem listed at [0].