RSA subkeys

[Werner Koch]

On Thu, 3 Feb 2005 11:24:39 -0500 (EST), Atom Smasher said:

> why not update the expiration date on the subkeys, and keep them? if
> they're not compromised there's no reason to throw them away.

You never know whether a key is compromised.  Key rollover is actually
a good thing to gain some forward secrecy.  It helps against a warrant
to decrypt an old intercepted message - you can claim that you have
destroyed the key a few days after it expired.  Ask the UK folks about
that - well, they won't be allowed to tell.

 
Shalom-Salam,

   Werner