Can I revitalise an old key-pair?

Laurent Jumet laurent.jumet at skynet.be
Mon Sep 2 05:56:47 CEST 2013


-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160


Hello MartinHvidberg !

MartinHvidberg <martin at hvidberg.net> wrote:

> My problem:
> I stead of generating yet another key-pair, how do I revitalise on of my
> existing key-pairs.
> This said, I have only what I can download from a key-server, and I do in
> fact remember the password, for some of them.
> Do the key-server have all the information I need to re-use an existing
> key-pair (provided I remember the password)?

    The keyserver holds only your public key; obviously you need the secret key
at home.
    What you should do in my opinion, is recover all the old key pairs you are 
able to get (with the passphrase), and revoque them but keep them (for the case
you still get a message encrypted with one of those so you can read it anyway),
and send them to the servers.

    You can choose one existing key pair (or create a new one), with a signing 
(main) key allowing use of most recent signing algorithms (with a 1024 signing 
key you'll reach RIPEMD160 as a maximum Digest-Algo)

    And create subkeys from time to time, depending on the risk (keyloggers if 
you are using non safe PC, USB stealing), and uploading to servers.

- -- 
Laurent Jumet
      KeyID: 0xCFAF704C
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (MingW32)

iHEEAREDADEFAlIkEB0qGGh0dHA6Ly93d3cucG9pbnRkZWNoYXQubmV0LzB4Q0ZB
RjcwNEMuYXNjAAoJEPUdbaDPr3BMD5gAoKJ6lC78nTGYQjyCiR+b8h02ifjlAKD4
TGa9YWsfGbGY2/JsKTKhzjSzHg==
=Gl2l
-----END PGP SIGNATURE-----



More information about the Gnupg-users mailing list