The good news and the bad news
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ ~~~~~~
⚙️ Discover my series on Automation of cybersecurity measures. THE Coded.
🔒 Related Stories: Encryption | Cyber security
💻 Free content on Cybersecurity Jobs | ✉️ Register for Broadcast list
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ ~~~~~
Why use a Yubikey on another computer
I’ve been thinking about a few threat scenarios lately. What if someone accesses your computer. So what can they do?
Most of my secrets and applications are not stored on my laptop as I explained in other articles. This means someone has to break into other things to get “the keys to the kingdom” or find a vulnerability in an app I use. Above all. Often they have to tackle at least two things.
If you are using a GPG stored on your computer and anyone accessing that computer can use it, export it, steal it, etc. All he has to do is execute the GPG commands. What if you don’t store the private key on your computer? What if you stored it on a Yubikey?
The good news and the bad news
Good news: you can store your GPG key on a Yubikey and the GPG private key is not on your computer if you…