RSA subkeys
Werner Koch
wk at gnupg.org
Thu Feb 3 19:46:53 CET 2005
On Thu, 3 Feb 2005 11:24:39 -0500 (EST), Atom Smasher said:
> why not update the expiration date on the subkeys, and keep them? if
> they're not compromised there's no reason to throw them away.
You never know whether a key is compromised. Key rollover is actually
a good thing to gain some forward secrecy. It helps against a warrant
to decrypt an old intercepted message - you can claim that you have
destroyed the key a few days after it expired. Ask the UK folks about
that - well, they won't be allowed to tell.
Shalom-Salam,
Werner
More information about the Gnupg-users
mailing list