[trizinix]

If you have your keys on an air gapped computer with an encrypted hard-disk, I don't see the need to use an additional password on the private keys.

[parenthephobia]

If you mean air-gapped literally, that seems unuseful.

Wouldn't you want the keys on the computer that's going to use them? And then, wouldn't you want to make it hard to copy the unencrypted private keys?

(I'm assuming we're talking about SSH keys.)

OTOH, it could be neat to run an ssh agent in a key-holding qube and forward that to whatever qubes need to use your SSH keys, using `ssh-add -c` so that key use must be confirmed in the key-holding qube.

[goatsi]

Sound exactly like split-GPG

https://www.qubes-os.org/doc/split-gpg/

[kakarot]

One possible benefit is giving you enough time to discover the breach and rotate keys before the keys are compromised

[hateduser2]

If they somehow break the encryption on your hard disk it’s just more security.. isn’t that what security’s all about? Getting the most safety you can get? What need is there to have an encrypted hard drive if your computer is air gapped? It’s just a better safer idea, no?

[avar]

Security is not about getting the most safety you can get. Otherwise why stop there? You could store the password protected private key itself as an encrypted file on the encrypted disk, and add one more layer, or double-encrypt it and add yet another layer etc.

[hyperfekt]

The assumption is that the encryption can only be broken via an evil-maid attack.

If you are victim of such an attack, the encryption of the file is broken as well.