OpenPGP key migration
My old key was a 1024 bit DSA key which I found out is now insecure and deprecated so I generated a 4096 bit RSA key to replace it. I updated my email signature, my pgp key page, and I issued a
key transition statement signed by both keys. Please update your keyring and contact me if you have any questions. Both keys will be valid for some time before I revoke the old one.
I don’t think this will affect anyone as I’m not part of any group that uses pgp for any communication. For now, the world of secure communication is still a lonely one :(
Anyways, I’ll leave links that I found useful for the key migration process.
- HOWTO prep for migration off of SHA-1 in OpenPGP
- Creating a new GPG key
- OpenPGP Best Practices
- Using OpenPGP subkeys in Debian development
Stay safe. Encrypt All The Things!