From 4ddf0388ed96172af7a87491ff1dfd3f59e828f2 Mon Sep 17 00:00:00 2001 From: "Tammi L. Coles" Date: Thu, 30 Nov 2023 14:54:44 +0100 Subject: [PATCH] edit Private key operations --- book/source/05-private.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/book/source/05-private.md b/book/source/05-private.md index d45ce3a..d7448de 100644 --- a/book/source/05-private.md +++ b/book/source/05-private.md @@ -122,14 +122,14 @@ Notably, the practice of explicitly storing fingerprints on OpenPGP cards contra ## Private key operations -While OpenPGP as a whole employs a broad range of cryptographic mechanisms, the set of operations that are performed in the core of a private key store are simple and very limited. +Although OpenPGP encompasses a broad range of cryptographic mechanisms, the set of operations performed within the core of a private key store are simple and very limited. Specifically, an OpenPGP private key store implements two primitives: 1. Given private key material whose algorithm supports decryption, it can decrypt a *session key*. 2. Given private key material whose algorithm supports signing, it can calculate a *cryptographic signature* for a hash digest. -All required operations can be performed with access to the component keys, including their private key material. That is, [Secret-Key packets](https://www.ietf.org/archive/id/draft-ietf-openpgp-crypto-refresh-12.html#name-secret-key-packet-formats). Additional packets, such as binding signatures, are not required for the operations in a private key store. +These essential operations require access only to the component keys and their associated private key material, specifically [Secret-Key packets](https://www.ietf.org/archive/id/draft-ietf-openpgp-crypto-refresh-12.html#name-secret-key-packet-formats). Additional packets, such as binding signatures, are not required. (key-store-design)= ## Private key stores