| 1 |
>>>>> On Thu, 5 Jul 2018, Jonas Stein wrote: |
| 2 |
|
| 3 |
>> b. RSA, >=2048 bits (OpenPGP v4 key format or later only) |
| 4 |
>> |
| 5 |
>> + c. ECC curve 25519 |
| 6 |
>> + |
| 7 |
>> 4. Key expiry: 5 years maximum |
| 8 |
>> 5. Upload your key to the SKS keyserver rotation before usage! |
| 9 |
|
| 10 |
> I think we should ensure first that everything works fine with ECC. |
| 11 |
> Last time I checked, ECC was a nightmare. |
| 12 |
|
| 13 |
> Some SKS server could not handle ECC... and so on. |
| 14 |
|
| 15 |
IIRC, it has also been pointed out that ECC is not part of the OpenPGP |
| 16 |
standard (yet)? |
| 17 |
|
| 18 |
Maybe we should better omit it. It shouldn't be too complicated for |
| 19 |
developers to add a dedicated RSA signing key for Gentoo if necessary |
| 20 |
(especially, since someone using ECC could be considered an advanced |
| 21 |
GnuPG user). |
| 22 |
|
| 23 |
Ulrich |
Archives