OpenPGP Key 'Details'

This submenu is called up from OpenPGP Public Keys.

Sections on this page:

•Identification

•Validity

•Type

•Details

•Valid e-mail addresses

•Key usage

•Comment

Section Identification

This section shows information about the owner of the OpenPGP key.

Parameters	Description
ID	Displays the unique ID of the OpenPGP key.
User ID	As a rule, the name and email address of the key holder are displayed.
Key ID	Displays the unique key ID of the OpenPGP key.
Subkey ID	Displays the unique key ID of the sub key.
Fingerprint	Hash of the key. This is used to compare the key with the owner to determine that the key was not exchanged on the way from the owner to the communication partner - for example by a man-in-the-middle attack.

Section Validity

Shows the validity of the certificate.

Parameters	Description
Issued on	Issue date of the certificate
Expires on	Expiration date of the certificate

Section Type

Parameters	Description
PK Algorithm	Specifies the key algorithm, for example RSA or DSS/SH.
Key size	Specifies the key length
Key capabilities	Displays the key capabilities (e.g. encrypt, sign, certify).

Section Details

(new in 12.1.4)

Column	Description
Type (ID)	Displays the key type (primary key / subkey) for each unique Key ID.
PK Algorithm	Specifies the key algorithm, for example ECC, RSA or DSS/SH.
Key size	Specifies the key length
Key capabilities	Displays the key capabilities (e.g. encrypt, sign, certify).
Issued on	Displays the issue date of the key.
Expires on	Displays the expiry date of the key.

Section Valid e-mail addresses

In this section, you can specify alternative email addresses for which the key is also available.

Thus, the key primarily created for

john.doe@mycompany.tld

could also be used for the alternative email addresses

j.doe@mycompany.tld

doe@mycompany.tld

After saving via Save addresses, an additional input field is displayed.

empty

Note:

This setting only works with key material which was uploaded with 7.4.6 or higher

Section Key usage

Displays the intended purpose of the certificate, taking only the purposes from the following table into account.

Parameters

Description

CheckBoxInactive Allow encryption

Specifies whether this key is to be used for encrypting to the email address from the User ID (Identification) and/or to the email address(es) entered under Valid e-mail addresses.

empty

Note:

Administrators may use this option to exclude the respective certificate from the use for encryption.

However, GINA users are also able to exclude their keys - no matter how they were integrated into the X.509 Certificates.

For this reason, you should refrain from a general (re-)activation of this option by an administrator.

Click on Save usage to save changes.

Section Comment

Here, you can enter a personal comment about the OpenPGP Key, for example why the corresponding trust position was granted.

Click on Save comment to save this comment.

Click on the Download public key button to save the public key in text format as an asc file.

Click on the Delete button to remove the OpenPGP Public Key from the appliance.

Please enable JavaScript to view this site.

Keyboard Navigation