Recommended key size for life long key
Werewolf
werewolf6851 at gmail.com
Sun Sep 1 19:12:33 CEST 2013
On Sun, Sep 01, 2013 at 01:18:12PM +0100, Nicholas Cole wrote:
> On Sun, Sep 1, 2013 at 12:12 PM, Josef Schneider <josef at netpage.dk> wrote:
>
> > I just use 4096 bit because that is the biggest size my OpenPGP Cards can
> > handle. In my opinion using a smart card instead of online keys increase
> > security far more than strange large key sizes!
> > I also see no point using less than 4096 because modern hardware is fast
> > enough. Maybe my keys last longer that way.
> >
> >
> One of the problems that this kind of discussion highlights is that moving
> to new keys is a real pest. People keep keys long after they really should
> and are reluctant to change keys because getting a given key certified and
> trusted is a pain - even with the web of trust.
>
> In a more ideal world, no one would want a key to last longer than a few
> years, and replacing keys at regular intervals would be the norm.
I carried a 1024 bit key for 5 years (2004-2009). For me it was easy to change over to newer size in 2009 because never been able to get my key signed. Next set made use of sub keys, in hopes of futur getting them signed, and just using bigger/better sub keys as need arose. Alas, 5 years later and still not found any other gpg uses so no signatures.
Wolf
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 230 bytes
Desc: Digital signature
URL: </pipermail/attachments/20130901/befab64c/attachment.sig>
More information about the Gnupg-users
mailing list