FSFE smart card and 4096 bit keys?

Werner Koch wk at gnupg.org
Sun Oct 7 14:47:47 UTC 2012

On Sun,  7 Oct 2012 13:59, daniel at pocock.com.au said:

> Under s1.1, it suggests the OpenPGP card only has 1024 bit RSA, which

These cards are not anymore distributes for some years now.  The current
card (Fellowship card or those from kernelconcepts) support 4096 bit
RSA.  However, they are advertised with a limit of 3072, because only
recent versions of GnuPG can cope with more than 3072 bits.

However, I don't see any reason why one should use more than 2048 bit
with the card.  Are you sure the OS and code of the card is secure and
reliable enough to hold up with the security expectations of a larger
key?  I am not.



Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.

More information about the Discussion mailing list