How do I hide OpenPGP key fingerprints from smartcard info (specifically YubiKey)?

My YubiKey stores my OpenPGP subkeys for signing, encryption and authentication with SSH, emails, code signing, etc. However, it also implements WebAuthn (not all sites enforce PIN checks), PIV and TOTP.
Anyone with the device can simply p… Continue reading How do I hide OpenPGP key fingerprints from smartcard info (specifically YubiKey)?

How to prevent my identity being revealed in the event my YubiKey is stolen?

I’ve recently been enjoying using my YubiKey to authenticate SSH via GPG Agent, TOTPs, and encrypting emails. However, I realised if I were to attend, say, a key signing party, that since the public key URL (as well as the fingerprint) is … Continue reading How to prevent my identity being revealed in the event my YubiKey is stolen?

Create "bare" pgp private key / Make private key without being able to generate the public key from it

How do you create a private-key/public-key pair without the public key’s information in the private key? So you should basically not be able to extract the public key from the private key. The private key should contain the bare minimum.
I… Continue reading Create "bare" pgp private key / Make private key without being able to generate the public key from it