RFC on issue 2701, default expiration time for new keys

Kristian Fiskerstrand kristian.fiskerstrand at sumptuouscapital.com
Wed Dec 7 14:16:13 CET 2016

On December 7, 2016 1:23:42 PM GMT+01:00, Justus Winter <justus at g10code.com> wrote:
>inspired by the talk on OpenKeychain UX decisions at the OpenPGP
>conference,  I decided that it is a bad idea to let users create keys
>that don't expire (unless they want to hang themself with --expert).
>This now begs the question what a good default expiration time is.

Not really any research behind it, but intuition says 2-3 years. Not so short users run into issues before familiar but short enough for it to be worth something.

>Relevant bug: https://bugs.gnupg.org/gnupg/issue2701

Kristian Fiskerstrand
Blog: https://blog.sumptuouscapital.com
Twitter: @krifisk
Public OpenPGP certificate at hkp://pool.sks-keyservers.net
fpr:94CB AFDD 3034 5109 5618 35AA 0B7F 8B60 E3ED FAE3

More information about the Gnupg-devel mailing list