Why not share private key or create new key pair for same individual?
Created: 28 Jun 2012 | Updated: 28 Jun 2012 | 2 comments
Friends:
I read everywhere that a private key should not be shared and that it is unwise to create a new keypair for the same individual. Could you all elaborate on the reasons for this?
Thanks in advance,
Miguel Reznicek
Discussion Filed Under:
Comments 2 Comments • Jump to latest comment
If your private key gets stolen, anything sent or encrypted for that user can be decrypted. That is the single most sensitive piece of data. If you have multiple keypairs for the same user, there will be confusion as to what keypair is being used for what piece of data and in the end you will have to resort to looking after 2 keys instead of just one.
http://www.cstl.com
Hi weevil:
But your private key is protected by an encrypted pass phrase. Isn't that incredibly inaccessible? I understand the explanation for the 2 keys. I thought it had a more important reason.
Thanks for your responces! -Migs
Would you like to reply?
Login or Register to post your comment.