XF

PGP

My PGP public key is published here, or you can use curl and gpg command to import it:

curl https://keybase.io/essethon/pgp_keys.asc | gpg --import

It is also published via Web Key Directory (WKD).

Fingerprint: 0DA1 55F8 64E2 605C 67FF 9021 EB40 D90B 1D28 E872.

My use cases

I use GPG (the open source implementation of OpenPGP standard) occasionally for the following purposes:

Most of my everyday emails are not end-to-end encrypted (E2EE) because (1) I find it complex and adds significant overhead, especially in terms of backup management and full-text search; (2) few email senders use E2EE. When transmitting sensitive information, I believe that there are many more security concerns to consider beyond just using a specific encryption tool. Nonetheless, I’m open to receiving/sending encrypted emails (for fun).

Additional notes on signing Git commits: Since Git 2.34 and OpenSSH 8.0, SSH keys can be used for Git commit signing. I sometimes use this signing method to simply verify the commit authorship against my GitHub/GitLab account (where I have registered my SSH public key) without concern for PGP’s Web of trust concepts.

Master key and subkeys management