Have been using pgp for awhile, give clients our public key, they encrypt the file, and we successfully decrypt the file.
Now we have a request that the client sign the file? I cannot find any reference that clearly explain the procedure.
The only thing I know is that on the client side, the customer encrypts using pgp -es option with our public key.
Where does this sign file come from? Do they run something that ties their public/private key to our public key.
Now we have a request that the client sign the file? I cannot find any reference that clearly explain the procedure.
The only thing I know is that on the client side, the customer encrypts using pgp -es option with our public key.
Where does this sign file come from? Do they run something that ties their public/private key to our public key.