Can I revitalise an old key-pair?
laurent.jumet at skynet.be
Mon Sep 2 05:56:47 CEST 2013
-----BEGIN PGP SIGNED MESSAGE-----
Hello MartinHvidberg !
MartinHvidberg <martin at hvidberg.net> wrote:
> My problem:
> I stead of generating yet another key-pair, how do I revitalise on of my
> existing key-pairs.
> This said, I have only what I can download from a key-server, and I do in
> fact remember the password, for some of them.
> Do the key-server have all the information I need to re-use an existing
> key-pair (provided I remember the password)?
The keyserver holds only your public key; obviously you need the secret key
What you should do in my opinion, is recover all the old key pairs you are
able to get (with the passphrase), and revoque them but keep them (for the case
you still get a message encrypted with one of those so you can read it anyway),
and send them to the servers.
You can choose one existing key pair (or create a new one), with a signing
(main) key allowing use of most recent signing algorithms (with a 1024 signing
key you'll reach RIPEMD160 as a maximum Digest-Algo)
And create subkeys from time to time, depending on the risk (keyloggers if
you are using non safe PC, USB stealing), and uploading to servers.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (MingW32)
-----END PGP SIGNATURE-----
More information about the Gnupg-users