Martin T wrote: > I need to create a public and private key pair for a person > representing an organization, upload the public key to RIPE(regional > Internet registry in Europe) public server, create some database > entries using those public and private keys and finally hand over the > private key + password protecting the private key to this person. >
do you telephone to ORGNAME representative, you have assurance of correct party? 1. email to ORGNAME representative the PUBKEY you create. 2. phone: 2a. ORGNAME representative confirms fingerprint of emailed PUBKEY. 2b. you give to ORGNAME representative passphrase for the SECKEY. 2c. ORGNAME representative gives a chosen passphrase for symmetric encryption. 3. you email to ORGNAME representative SECKEY encrypted with their chosen passphrase and signed by the PUBKEY. (1) gpg --armor --export --output pubkey.asc ORGNAME (3) gpg -a --export-secret-keys ORGNAME | gpg -acs --force-mdc -o seckey.asc -u ORGNAME _______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users