Best practices for obtaining a new GPG certificate
Neal H. Walfield
neal at walfield.org
Fri Mar 19 08:59:09 CET 2021
On Fri, 19 Mar 2021 08:33:17 +0100,
Robert J. Hansen via Gnupg-users wrote:
>
> > The next default is ECC (ed25519+cv25519) which is supported by most
> > OpenPGP implementations. Only if you have a need to communicate with
> > some niche implementaions you need to use rsa3072.
>
> Last I checked, Thunderbird 78 did not support ed25519+cv25519
> keys. That's not a niche implementation.
Thunderbird 78's default OpenPGP implementation is rnp. According to
the interoperability test suite, rnp is able to use the "Alice" key
from the "OpenPGP Example Keys and Certificates" I-D.
https://tests.sequoia-pgp.org/#Encrypt-Decrypt_roundtrip_with_key__Alice_
https://tools.ietf.org/html/draft-bre-openpgp-samples-00#section-2
The "Alice" certificate uses:
Primary key algorithm: Ed25519
Subkey algorithm: Curve25519
Neal
More information about the Gnupg-users
mailing list