There are actually two public keys?

Robert J. Hansen rjh at
Sun May 17 03:33:10 CEST 2009

James P. Howard, II wrote:
> Can anyone explain why there is a difference between signing and
> encrypting keypairs, even for the same type (RSA)?

The shift from single keypairs to multiple keypairs was motivated by a
lot of concerns.  IMO, most of those concerns failed to materialize.

For instance, some people say that separate signing and encrypting keys
is best, since if an encryption key gets compromised you can just revoke
the encryption part and leave your signing key intact.  In reality,
compromise tends to be an all or nothing affair: either the entire cert
is suspect or it's not.

More information about the Gnupg-users mailing list