1 |
Add a rule requesting renewal of keys at least two weeks before their |
2 |
expiration date, in order to give services time to refresh. |
3 |
--- |
4 |
glep-0063.rst | 9 ++++++++- |
5 |
1 file changed, 8 insertions(+), 1 deletion(-) |
6 |
|
7 |
diff --git a/glep-0063.rst b/glep-0063.rst |
8 |
index 0fdf5ed..d41a2a0 100644 |
9 |
--- a/glep-0063.rst |
10 |
+++ b/glep-0063.rst |
11 |
@@ -32,6 +32,10 @@ v2 |
12 |
by a single requirement. The rules have been simplified to use |
13 |
the same time of 2 years for both the primary key and subkeys. |
14 |
|
15 |
+ An additional rule requesting key renewal 2 weeks before expiration |
16 |
+ has been added. This is in order to give services and other developers time |
17 |
+ to refresh the key. |
18 |
+ |
19 |
v1.1 |
20 |
The recommended RSA key size has been changed from 4096 bits |
21 |
to 2048 bits to match the GnuPG recommendations [#GNUPG-FAQ-11-4]_. |
22 |
@@ -81,7 +85,10 @@ not be used to commit. |
23 |
|
24 |
4. Expiration date on key and all subkeys set to at most 2 years |
25 |
|
26 |
-5. Upload your key to the SKS keyserver rotation before usage! |
27 |
+5. Key expiration date renewed at least 2 weeks before the previous |
28 |
+ expiration date. |
29 |
+ |
30 |
+6. Upload your key to the SKS keyserver rotation before usage! |
31 |
|
32 |
Recommendations |
33 |
--------------- |
34 |
-- |
35 |
2.18.0 |