* on the Mon, Apr 28, 2014 at 02:40:29PM +0100, MFPA wrote: >> I solve this problem using an OpenPGP smart card. My >> PGP key never touches my work machine, so I never have >> to worry about it being compromised. > > Many employers would not allow you to plug in hardware, so you > couldn't use an OpenPGP smart card reader. And many would not allow > GnuPG at all if it was not something they generally used. Or if they > did use it, many would insist on key escrow or additional decryption > key, or using a key they generated for you.
Many companies also make you wear a suit and tie and use Internet Explorer 7. I do not work for these companies. >> When I left my previous job, I revoked the UID containing the email >> address assigned by that company, and then added the new UID for >> the new company. > > How did the previous employer feel about not having access to any > of your archived messages/documents? This is what we call a loaded question. I did not make any data that belonged to the company, unavailable to the company, via any methods, be that encryption, or deletion. My use of OpenPGP was well known, and at no point was it discouraged. Several of my colleagues also used OpenPGP, although I don't believe any of them used a smart card. -- Mike Cardwell https://grepular.com https://emailprivacytester.com OpenPGP Key 35BC AF1D 3AA2 1F84 3DC3 B0CF 70A5 F512 0018 461F XMPP OTR Key 8924 B06A 7917 AAF3 DBB1 BF1B 295C 3C78 3EF1 46B4
signature.asc
Description: Digital signature
_______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
