RSA subkeys

Werner Koch wk at
Thu Feb 3 19:46:53 CET 2005

On Thu, 3 Feb 2005 11:24:39 -0500 (EST), Atom Smasher said:

> why not update the expiration date on the subkeys, and keep them? if
> they're not compromised there's no reason to throw them away.

You never know whether a key is compromised.  Key rollover is actually
a good thing to gain some forward secrecy.  It helps against a warrant
to decrypt an old intercepted message - you can claim that you have
destroyed the key a few days after it expired.  Ask the UK folks about
that - well, they won't be allowed to tell.



More information about the Gnupg-users mailing list