RSA vs DSA/ElGamal
Zach Himsel
z.himsel at gmail.com
Fri Jun 9 06:31:18 CEST 2006
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
John W. Moore III wrote:
> Zach Himsel wrote:
>
>>> I created a RSA key that can sign and encrypt (only one key, no subkey).
>>> Is that ok? Or is that a security and/or performance weakness? Or is it
>>> better?
>
> That's Fine! There is *no* security weakness there; as long as the Key
> size is 2048 you should be in great shape.
>
> Assuming you still have control over your 'compromised' Key you may wish
> to generate a Revocation Certificate for it and Import it into your Key
> and then send the Old/Original Key (now Revoked) to the Keyservers so no
> one will attempt to use it in the future.
>
> Word of Caution: If you have any Files encrypted using the Old/Original
> Key; Decrypt them first.
>
> JOHN ;)
> Timestamp: Friday 09 Jun 2006, 00:18 --400 (Eastern Daylight Time)
I'm way ahead of you :)
I already sent out the revocation signature to the keyservers.
I've already decrypted all the files that I can think of. I'm also
keeping the floppy with the original (before it was revoked) secret key,
and the revocation certificate in case I come across another file.
_______________________________________________
Gnupg-users mailing list
Gnupg-users at gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
- --
Zach Himsel <z.himsel[at]gmail.com>
,=========|==========================.
| |_|o|_| | (`) ASCII Ribbon Campaign|
| |_|_|o| | X Against HTML email |
| |o|o|o| | / \ and vCard Signatures |
|=========|==========================|
| OpenPGP Public Key ID: 0xD1093592 |
| http://zach-himsel.is.dreaming.org |
`===================================='
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (MingW32)
Comment: =====================================
Comment: Zach Himsel <z.himsel[at]gmail.com>
Comment: ____________________________________
Comment: | _ ASCII Ribbon Campaign|Key ID: |
Comment: |( ) against HTML email |0xFD04A326|
Comment: | X and vCard signatures |__________|
Comment: |/ \ | zach-himsel.is.dreaming.org |
Comment: """"""""""""""""""""""""""""""""""""""
iQEVAwUBRIj5lZHoJdzRCTWSAQo7Pgf/RUbZ53C/s2bnMd8Ywvl2Yf7OSAVjNOx5
ftczgop+/GfcTCuyMeV2mNY+Hu2BB0j6ialKnoH7P53v2HAIcvSjaGcOm2MQYHsR
eUp1Daq8f3X/NKyeyW+Xi0NxzuC5R/WW4Lu/8+Zg5j5HEPF9TlNUmj3MpRi401XM
uEYKRL0haVVbIVHydptQQVYUvRmsxtKXKzjAgbhYDqxdOYnfCPxkLbf08dIxLTMu
ml8mGY7PUKy916yy6/Ks9evoBijyh5KrmNjUelprE8WDgdzet0g8qzWOvnBu/QS6
f4yfqkm5T6Q/CnHDrZG2k4Mix14XCIyX9m6iewZabN1/Oz69Wdt2Hw==
=jVVg
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list