Is ECC ready and increase the default RSA key size to 3072 bits?

Bernhard Reiter bernhard at
Mon May 6 08:55:05 CEST 2019

Am Freitag 03 Mai 2019 16:10:48 schrieb Werner Koch:
> On Thu, 25 Apr 2019 08:42, bernhard at said:
> > Is ECC ready to be the default?
> > My estimation is: It is not, and then we should switch the default to
> > RSA3072 until it is.
> 2.3 will use ed25519/cv25519 as default algorithms for new keys.  All
> other major implementations support ed25519 and thus we are ready to
> switch this summer.

What will the status of a 2.3.0 release be?
(Is it a "development" line or ready for packaging?)

Would it make sense to announce the step so people could flag potential 
implementations that may be interesting from an interoperability side?

Best Regards,

--   +49 541 33 508 3-3
Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998
Geschäftsführer Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: This is a digitally signed message part.
URL: <>

More information about the Gnupg-devel mailing list