This article describes how to split and rejoin PGP Desktop 8.x keys in Windows 98, ME, NT,2000, and XP.
Any private key may be split into shares among multiple shareholders. In order to sign or decrypt files with a split key, the key must be rejoined by the minimum number of shareholders, which is designated at the time the key is split. This is recommended for extremely high security keys (such as ADKs).
|Note: When a key is split, it is divided into .shf files (shareholder files). These shareholder files are necessary for rejoining the key later.|
Create a split key
Rejoin a split key to sign or decrypt files
|Note: You may rejoin a split key with local share files, remote share files, or a combination of both. This section will discuss rejoining with local shares and remote shares.|
When a split key is rejoined over a network, it happens securely over an encrypted connection.
Rejoin a split key permanently
|Note: Once a split key is rejoined permanently, it will render all its share files invalid. In addition, the rejoined key must be assigned a new passphrase.|