same key pair for more than one e-mail address

Olav Seyfarth olav at mozilla-enigmail.org
Fri Dec 18 23:51:34 CET 2009


-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

Hi Marcio,

> Suppose I'd like to "bind" the same key pair to more than one e-mail address.
> Is it recommended? Any comments will be greatly appreciated.

it depends.

Using it for two private mail addresses that both are public is no problem.
You may add or revoke UIDs later on.

If you use an email address only your closest friends know, then adding a UID
for it to your public key would reveal it.

Also, keep in mind that if you use the same key for private and business,
depending of the legislation on your country, your employer might ask you to
hand out the private encryption key once you leave the company. It is wise
to avoid such situations by using separate keys for business and private use.

There are more cases like a low-trust key just to secure transport e.g. for
XMPP aka Jabber.

Olav
- -- 
The Enigmail Project - OpenPGP Email Security For Mozilla Applications
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.12 (MingW32)
Comment: Diese Email ist digital signiert/verschlüsselt
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
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=wil5
-----END PGP SIGNATURE-----



More information about the Gnupg-users mailing list