[BLU/Officers] Boston Linux Meeting Wednesday, September 20, 2017 - PGP/GnuPG Keysigning Party XVII
Bill Ricker
bill.n1vux at gmail.com
Sun Sep 17 22:35:02 EDT 2017
My agenda is -
1. Crypto News Review
2. Annual Historical Vignette
3. How-To Reminder for GPG/PGP Key-signing
4. GPG/PGP Key-signing
This year's Annual Historical Vignette is
Of Enigmas and Fishes
Or,
Of Wheels and Rotors and Drums
- - - -
Re Keys for Key-signing, we should announce (in addition to what we've
said before)
* We will NO LONGER sign RSA or DSA 1024b keys (or shorter). Obsolete.
* We will NOT sign RSA 2048b keys without expiration dates or
expiration dates beyond 2020.
* Use RSA 4096 for gpg2 --gen-key
Notes
* If concerned about well-capitalized massive factoring dictionaries,
subtract a small multiple of 8 bits to get a size that is not standard
and thus won't be dictionaried.
* Alas the one trustworthy ECC curve, ed25519, is supported only in
GPG 2.1.7+ (gpg2)
only with developer version of a library and in experimental mode.
* But do start using ed25519 for efficiency and security with any SSH
servers updated to handle it
ssh-keygen -a 100 -t ed25519 # EdDSA Twisted Edward curves.
More information about the Officers
mailing list