GnuPG cryptographic defaults on the 2.2 branch

Ángel angel at
Thu Sep 21 20:06:29 CEST 2017

On 2017-09-21 at 12:18 -0400, Daniel Kahn Gillmor wrote:
> > and in some cases it can reduce the security as it isn't compatible
> > with certain hardware tokens (like youbikey 3 neo).
> Users with a yubikey (or other hardware tokens) will make keys that
> will fit onto their devices.  I don't think that the default is an
> issue for them.

It would be a problem for them if they created a local key using
defaults, and after some time wanted to move it to a hardware token
where it doesn't fit. However, what this should do is encourage hardware
vendors to support larger keys, not freeze key size in order to support
certain tokens!

More information about the Gnupg-devel mailing list