Currently I thinking about on-the-fly disk encryption using Truecrypt/dmcrypt LUKS with key stored on smartcard. I would like to use openPGP v2 smart card, respectively GPF Cryptostick which is based on openPGP v2 smartcard and my question is:
On the card you can store 3 GPG keys (encryption, signing, authentication) or S/MIME equivalent. There are also a data objects on smartcard when you can store key for TC/LUKS. So, are those data objects stored on card encrypted with GPG/S-MIME or just protected by smartcard's PIN?
