Why expire?

David Shaw dshaw@jabberwocky.com
Wed Jul 30 00:06:02 2003


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Tue, Jul 29, 2003 at 04:37:24PM -0400, CL Gilbert wrote:
> David Shaw wrote:
> 
> |
> | A good reason to put an expiration date on a key is that people
> | sometimes forget their passphrase or lose the secret key.  With an
> | expiration date, there is a drop-dead date after which the key is not
> | going to be used.
> |
> | David
> 
> Ill extend that to say expiration has nothing to do with security, but
> courtesy.

I think that's a good description.  There have been suggestions on
changing the expiration system to an optional "hard" (non-changeable)
expiration, as the old PGP 2.x keys had, but this looks like it won't
be happening soon for a few technical reasons.

David
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3rc1 (GNU/Linux)
Comment: Key available at http://www.jabberwocky.com/david/keys.asc

iEYEARECAAYFAj8m8AMACgkQ4mZch0nhy8lElACgkXnDuyCB0E7ZcptftrOoQ2mR
tuMAoM/SarNPNBD9gun5miV6WX3Btgrk
=GghJ
-----END PGP SIGNATURE-----