Leo

Asked: 2010-09-11 06:48:32 +0800 CST2010-09-11 06:48:32 +0800 CST 2010-09-11 06:48:32 +0800 CST

PGP encryption key with split-knowledge and dual control

An auditor recommends: We recommend that PGP environment be re-keyed using the industry required (ISO x9.8 and x9.24) standards of “split-knowledge and dual control”

Is there something that we're missing?: this would require encrypted files to be decrypted with two people each time the key is accessed/loaded.

Are there use cases with PGP keys that this makes sense?

1 Answers

Voted

Best Answer

Chris S
2010-09-11T06:57:52+08:002010-09-11T06:57:52+08:00
If you have a company key that was used to sign people's individual keys, yes, it should be password protected and the password divided to at least two people. Individual keys should also be password protected, but split-knowledge is not necessary or recommended for most purposes.
0

PGP encryption key with split-knowledge and dual control

Ping a Specific Port

How do I tell Git for Windows where to find my private RSA key?

How do you restart php-fpm?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Resolve host name from IP address

How can I sort du -h output by size

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?