Export private key #5

kamilgrzela · 2022-10-16T18:55:53Z

kamilgrzela
Oct 16, 2022

Hi all,
First of all, thank you for the good project and concept. I am testing it right now. We will see what the result will be.
And I have a question - Could you tell me why you are using the private key export option?

BR

Answered by polhenarejos

Oct 17, 2022

You have two ways of exporting:

PKCS12 format is used, for instance, to perform S/MIME signing. Most of email clients accept PKCS12 cert+privkey file formats. In this case, the private key is protected with a passphrase you provide.
Wrap/unwrap is used to backup your private keys. It is useful to export them to another device or just for having a backup in case your device suddenly deads. In this approach, the private key is wrapped by using a device key, usually generated from multiple shares custodied by different people.

Besides of that, you can mark a key as non-extractable and, therefore, impossible to backup.

View full answer

polhenarejos · 2022-10-17T09:23:55Z

polhenarejos
Oct 17, 2022
Maintainer

You have two ways of exporting:

PKCS12 format is used, for instance, to perform S/MIME signing. Most of email clients accept PKCS12 cert+privkey file formats. In this case, the private key is protected with a passphrase you provide.
Wrap/unwrap is used to backup your private keys. It is useful to export them to another device or just for having a backup in case your device suddenly deads. In this approach, the private key is wrapped by using a device key, usually generated from multiple shares custodied by different people.

Besides of that, you can mark a key as non-extractable and, therefore, impossible to backup.

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Export private key #5

{{title}}

Replies: 1 comment

{{title}}

Select a reply

Export private key #5

kamilgrzela Oct 16, 2022

Replies: 1 comment

polhenarejos Oct 17, 2022 Maintainer

kamilgrzela
Oct 16, 2022

polhenarejos
Oct 17, 2022
Maintainer