The Fellowship Smartcard
When you join the Fellowship, you will automatically receive two letters: One containing your personalised Fellowship card, a smart card containing state-of-the-art hardware encryption, and another one containing administrative information for the Fellowship card.
Personalised for you
The Fellowship smart card has a unique design that is personalised for you with your name and fellowship number. There are three OpenPGP subkeys on the smart card:
- A signature subkey, used to sign email, documents and other data.
- An encryption subkey, used to decrypt incoming data and mail.
- An authentication subkey, not used for normal GnuPG operation, which allows other tools like SSH or PAM modules to use the Fellowship card for authentication and (remote) logins.
The Fellowship card is a so-called "smart card" and requires a smart card reader for your computer. Using your Fellowship card in combination with a smart card reader, you can:
- Sign and encrypt your email.
- Use your Fellowship card for single sign-on at your computer.
- Log in remotely on your machines using SSH. Because the key is stored in hardware and can never leave the card, you can even do this safely from a potentially insecure machine.
- Use the Fellowship card only for subkeys of your normal GPG key, as described in the GnuPG Smartcard Howto under Advanced Features or the howtos in our wiki. Using your Fellowship card with subkeys is recommended.
Use your imagination
The Fellowship card is indeed a very flexible token that can be used for many things -- use your imagination and blog about it.