OpenPGP key transition announcement

  |   Source

Because of the recently announced attack against the SHA-1 digest algorithm, I finally decided to move away from my old 1024-bit DSA OpenPGP key, landing to a shiny new 4096-bit RSA one.

The old key will continue to be valid for some time, but I prefer all future correspondence to come to the new one. I would also like this new key to be re-integrated into the web of trust. I'm attaching a file with the complete text of the transition, clearsigned by both keys to certify the transition.

You can find the transition statement also on .

You can check the validity of the file with something like:

$ gpg --decrypt key-transition_20090509.txt | gpg --decrypt

If you need to transition your key too, and you're one of my signees, then let's please coordinate, so that we have the new keys cross-signed, without spurious signatures fromgoing-to-be-revoked keys :)

Thank you for your help.

Comments powered by Disqus
Contents © 2013 David Paleino - Powered by Nikola