We can sign a file with


gpg -s file.pdf

Which generates a file signature


It is also possible to make a detached signature:

gpg -b file.pdf

Which generates


I noticed that the

files are always 566 bytes, while the size of
is proportional to the size of the original file.

My questions are:

  • What is the difference between a GPG signature and a detached signature?
  • Why are
    signatures larger?
  • Is one more secure than the other?
Asked question