Backing up your PGP key by hand

Jacob Bachmeyer jcb62281 at gmail.com
Fri May 6 01:42:11 CEST 2022 

Lars Noodén via Gnupg-users wrote:
> On 5/5/22 01:11, Jacob Bachmeyer wrote:
> > Lars Noodén via Gnupg-users wrote:
> >> A removable hard drive might be an option, if the storage time
> >> is less than a decade and there are decent storage conditions
> >> in regards to chemicals, temperature, humidity, and so on.  Flash
> >> memory seems to lose
> >> its charge rather quickly, measured in months.
> >
> > Write-once optical media is my preferred means of long-term backup for
> > nontrivial amounts of data,
> [snip]
>
> The number of years that the keys and the data they apply to will be
> stored unpowered, offline will influence which storage medium is
> acceptable for the task.
>
> Old CD-R were short-lived garage from my experience, but certain models
> of recently made CD-R should last a while even under slightly
> non-optimal storage conditions before they start flipping bits.

This depends on the quality of the media.  I first got a CD-R drive in 
the mid 2000s and have discs from back then that were still readable 
when I last looked at them a few years ago.  Admittedly, these have been 
stored under ordinary room conditions and protected in a disc binder or 
jewel cases and were not the "bargain basement" media that was also 
available at the time.  A friend once lamented having something like 3 
to 5 discs out of a 100-pack of "Great Quality" branded CD-R media that 
were actually usable; the rest were either rejected during burning or 
failed immediately upon readback.  It is doubtful that those "Great 
Quality" discs are still readable today.  There was a significant 
difference in price:  the discs I used (Maxell/Memorex/Verbatim name 
brands stand out thinking back) typically cost about $20 for a 50-pack 
or similar for a 100-pack if on sale, while "Great Quality" was $5 for 
100.  You really did get what you paid for, however.

There were also direct-write DVD-R camcorders fairly popular in the mid 
to late 2000s.  I remember news stories about most of Barack Obama's 
earlier speeches having been lost before his first term as US President 
had ended because the only recordings had been made by his supporters 
using those camcorders and cheap DVD-R media that did not last.


Note that "nontrivial amounts of data" excludes PGP keys; even a 
mini-CD-R holds several megabytes.  I will admit that lack of a 
reasonable backup strategy is one of the reasons I do not presently use 
PGP for encryption.

> [...]
>
> Whether that bit flip hits anything important is another matter, but
> they do add up over time and with enough of them they will eventually
> hit something, worse if it hit something compressed.  [...]

CD-ROM format has considerable data expansion.  If I remember correctly, 
a 650MB data CD actually stores something like 2.1GB after applying the 
various ECC layers.  There are quite a few bits to flip before anything 
is affected.

> Air pollution, temperature, light, and humidity are some of the factors
> affecting the lifespan of the physical storage medium.

One of the advantages of optical media generally is that the discs are 
(supposed to be) sealed against their environment.  Absent extremes, 
(polycarbonate has a melting point, the data is written using very 
intense light that locally heats the dye layer) environmental effects 
should be minimal.  Along these lines, while fire will obviously destroy 
optical media, discs should remain readable after being in a flood, for 
example.  (Some mold removal may be needed, and the data should be 
copied to new media in case mold or the chemicals used to remove it 
adversely affect the integrity of the environmental seal.)

> > I have SD cards and USB sticks with data blocks last written
> > many years ago and still readable.  Granted, I have never used
> > low-end no-name
> [snip]
>
> And by reading them, they have powered up and refreshed the charge.  The
> problem applies to such flash storage devices which have been left
> unpowered for longer periods of time.

No, it does not.  That is not how flash memory works.  Some flash 
translation layers might do such things in some devices, but I strongly 
doubt that flash-based microcontrollers have undocumented hardware 
functions to periodically rewrite the program storage, for example.  In 
any case, I have both USB sticks and SD cards that have been left 
entirely unpowered for years and found the data to still be there, 
certainly much longer than the "few months" you mentioned earlier.

Theoretically, the stored charge does eventually leak off of the 
floating gate, but EEPROMs (and flash, which is essentially the same 
technology) are generally considered to hold data indefinitely.  The 
data retention specifications are based on "accelerated aging" tests, 
which generally involve elevated temperature.  The processes involved 
are highly nonlinear with respect to temperature and may very easily 
require centuries at room temperature or not occur at all without 
elevated temperatures; we do not know because flash storage is only now 
reaching the milestone of having existed long enough for even the oldest 
imprints to be reaching even the "accelerated aging" estimated 
lifespan.  So far, we are not seeing catastrophic losses of data stored 
in flash.


-- Jacob

More information about the Gnupg-users mailing list