1 |
>>>>> On Thu, 5 Jul 2018, Jonas Stein wrote: |
2 |
|
3 |
>> b. RSA, >=2048 bits (OpenPGP v4 key format or later only) |
4 |
>> |
5 |
>> + c. ECC curve 25519 |
6 |
>> + |
7 |
>> 4. Key expiry: 5 years maximum |
8 |
>> 5. Upload your key to the SKS keyserver rotation before usage! |
9 |
|
10 |
> I think we should ensure first that everything works fine with ECC. |
11 |
> Last time I checked, ECC was a nightmare. |
12 |
|
13 |
> Some SKS server could not handle ECC... and so on. |
14 |
|
15 |
IIRC, it has also been pointed out that ECC is not part of the OpenPGP |
16 |
standard (yet)? |
17 |
|
18 |
Maybe we should better omit it. It shouldn't be too complicated for |
19 |
developers to add a dedicated RSA signing key for Gentoo if necessary |
20 |
(especially, since someone using ECC could be considered an advanced |
21 |
GnuPG user). |
22 |
|
23 |
Ulrich |