[prev in list] [next in list] [prev in thread] [next in thread]
List: gnupg-devel
Subject: Key rollovers, overlapping (Re: WKD: returns only one pubkey (and why))
From: Bernhard Reiter <bernhard () intevation ! de>
Date: 2023-02-23 15:43:32
Message-ID: 202302231643.33394.bernhard () intevation ! de
[Download RAW message or body]
[Attachment #2 (multipart/signed)]
Am Donnerstag 26 Januar 2023 11:23:49 schrieb Simon Josefsson via Gnupg-devel:
> While we could recommend doing hard-stop key rollovers where you revoke
> the earlier key at the same time you migrate to the new key, I don't
> think that is a common habit nor am I sure this is even a good idea.
> Does anyone think we should recommend that?
Not me.
I think we should allow time-overlapping pubkeys for an email-address
(and any other UID) and thus recommend _smooth_ key rollovers.
Bernhard
--
https://intevation.de/~bernhard +49 541 33 508 3-3
Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998
Geschäftsführer Frank Koormann, Bernhard Reiter
["signature.asc" (application/pgp-signature)]
_______________________________________________
Gnupg-devel mailing list
Gnupg-devel@gnupg.org
https://lists.gnupg.org/mailman/listinfo/gnupg-devel
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic