RSA vs DSA/ElGamal
John W. Moore III
johnmoore3rd at joimail.com
Fri Jun 9 06:18:32 CEST 2006
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Zach Himsel wrote:
> I created a RSA key that can sign and encrypt (only one key, no subkey).
> Is that ok? Or is that a security and/or performance weakness? Or is it
> better?
That's Fine! There is *no* security weakness there; as long as the Key
size is 2048 you should be in great shape.
Assuming you still have control over your 'compromised' Key you may wish
to generate a Revocation Certificate for it and Import it into your Key
and then send the Old/Original Key (now Revoked) to the Keyservers so no
one will attempt to use it in the future.
Word of Caution: If you have any Files encrypted using the Old/Original
Key; Decrypt them first.
JOHN ;)
Timestamp: Friday 09 Jun 2006, 00:18 --400 (Eastern Daylight Time)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.4-svn4151: (MingW32)
Comment: Public Key at: http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust (US26): http://www.gswot.org
Comment: Homepage: http://tinyurl.com/9ubue
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iQEcBAEBCgAGBQJEiPaXAAoJEBCGy9eAtCsPOD0H+gMiIxMdY+fQFiXaSuaemE4U
bbcfDFKYnxXVwQVH42BKl65vCouHPsiNx+CUEln5MiLI6JFXjeOMX3oHj1MZ6VSq
AC95DETRpi4eSKsIFT+SxD9tzKkcLMjzdh6pkO+LzvWLNKmx39oSZh8rvfCmxNS1
huSdRL1LqbvewCQ2drZEaxd6Fp9FrKNoKWiF6eyzZG8F6/s8BBzyjCpNL6TDS9H0
L1v0OvRxK81TW/LuUP6PZwY7ck111kdKE/+EZMBXsMuxazraiymcVRbToOntXF0y
TZdxT0+20CuQpOriTc62jimvwSsWm60lsLSrPFuMve0G3xIAgR1Lo1id+lXYYVs=
=Zv9p
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list