By tiger|2019-06-25T15:15:59+00:00June 22nd, 2019|Categories: Projects|
Secure Email with Hardware Keys
This is my first post, I will be documenting things like this as I come across them in my personal/professional life. Feedback is welcome in the comments.
Yubikey can store your GPG RSA 4096bit keys, for git signing, SSH authentication, and sign and encrypt messages, which is awesome, but the majority of us use online web mail such as gmail. While gmail supports FIDO U2F authentication for login, it does not support GPG out of the box.
Mailvelope to the rescue.
Mailvelope is an extension for Firefox and Chrome enabling GPG with webmail clients. Up until version 3.0 keys were stored in the browser extension, yikes. But now it can use keys securely stored on your hardware token such as yubikey.