Recommended key size for life long key
Ole Tange
tange at gnu.org
Sat Aug 31 11:46:31 CEST 2013
The FAQ http://www.gnupg.org/faq/GnuPG-FAQ.html#what-is-the-recommended-key-size
recommends a key size of 1024 bits.
Reading http://www.keylength.com/en/4/ I am puzzled why GnuPG recommends that.
Why not recommend a key size that will not be broken for the rest of
your natural life? (Assuming the acceleration of advances in key
breaking remains the same as it has done historically, thus no attack
is found that completely destroys the algorithm used).
I just generated a 10kbit RSA key. It took 10 minutes which is long to
sit actively waiting, but not very long if you are made aware it will
take this long and just leave it in the background while doing other
work; and to me 10 minutes (or even 10 hours) is a tiny investment if
that means that I do not loose the signatures on my key by changing
key every 5 years.
/Ole
(Please Cc any answer)
More information about the Gnupg-users
mailing list