-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1,SHA256
I am transitioning GPG keys from very old 1024 bit DSA key into a new 4096-bit RSA key. The old key will continue to be valid for about 6 weeks, but I prefer all new correspondence to be encrypted in the new key, and will be making all signatures going forward with the new key.
Why the change? The old key was very old and currently not that secure anymore. Additionally, my new key is on my OpenPGP card which does not support DSA keys.
This document is signed with both keys to validate the transition. The new key is not signed with the old key due to potential security issues.
Zmieniam swój główny klucz GPG z bardzo starego 1024-bitowego klucza DSA na nowy 4096-bitowy klucz RSA. Stary klucz ma ustawioną datę wygaśnięcia na 6 tygodniu od dziś, z tego powodu wolałbym aby każda nowa komunikacja była już szyfrowana nowym kluczem. Wszelkie podpisy również będę wykonywał już nowym kluczem.
Dlaczego zmiana? Stary klucz jest bardzo stary i już nie jest tak bezpieczny w obecnej chwili. Poza tym nowy klucz jest przechowywany na karcie OpenPGP, która nie ma możliwości przechowywania kluczy DSA.
Ten dokument jest podpisany zarówno starym, jak i nowym kluczem, dla uwiarygodnienia zmiany. Nowy klucz nie jest podpisany starym kluczem, z uwagi na ewentualne problemy bezpieczeństwa.
The old key is:
1024D/C27E20F1 2007-09-11 [expires: 2016-05-30]
uid Marcin Badurowicz <ktos@ktos.info>
uid Marcin Badurowicz <m@badurowicz.net>
Key fingerprint = 86AB 78AD 9003 03D7 4664 31D6 AC85 C529 C27E 20F1
The old key is available at [https://ktos.info/gpg-old.txt] and at [http://pgp.mit.edu/pks/lookup?op=get&search=0xAC85C529C27E20F1].
The new key is:
4096R/01BF6432 2016-04-18
uid Marcin Badurowicz <ktos@ktos.info>
uid Marcin Badurowicz <m@badurowicz.net>
Key fingerprint = D202 3C67 A1BD DCDA 8252 CAEB 0314 CA80 01BF 6432
To fetch the full new key from a server, run:
gpg --keyserver pgp.mit.edu --recv-key 01BF6432
The new key is available at [https://ktos.info/gpg.txt] and at [http://pgp.mit.edu/pks/lookup?op=get&search=0x0314CA8001BF6432].
However, the 01BF6432 key is used only for key signing, for document signing I will be using the 8B93305C subkey (see https://alexcabal.com/creating-the-perfect-gpg-keypair/).
Please contact me via e-mail at m@badurowicz.net in case of any questions about the transition.
My Keybase proofs will be revoked when I change my master key on Keybase.io. This document is uploaded to my website and will be available at [https://ktos.info/gpg-transition.md] and there will be an equivalent Gist on GitHub. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2
iEYEARECAAYFAlcVVZ8ACgkQrIXFKcJ+IPFo2wCfdwqw7CUZAfpBceeV6HJqqWP+ lGMAniUqE/cl/gfnvJVgsG0jmtkjj0HRiQIcBAEBCAAGBQJXFVWfAAoJEAoryqOL kzBcxnMP/0Z//9jNfu7LidxVNBFyi7hKuUVkaYP8Pb5e+z0zHNrE0pZ/VKrb3nCh agdFGl4OiE6LpcvEggC7PyqOUcIxfUllsqdhpFnk51DdDc1wTSt8mO99SMA7AN7E GfWh5dfN2zXrlqdWdgy4dgg3tq70/TgQeu4plOrqRULWx/YnHfPjBAvTNT3/dDRd qGEgplfx6mSWC5muggLKD4UABm/WyIiDl9wfQfao2t12A+YHRzPR/y08jmZUYXVx MD6V0SgcN40LNm8vaei8WL3len3dZIAk9V6fNKi4VY4g/AWyCyuueNB8qd6mJWU4 HYGaTCLSxA35dHDkKvW4xw+v0haomfa0zZgBC88nhIvuEBC8ULlYH3carFLMzJlq ngOHdXoBV40bHlGZs81C07uwVMQ+H6VCegQL1WAwM7GzZ4mqAokvapKtGZsB7g2D 6F3rON5/n1S/+HF2A6vur/cv4qVqbmJ7IXqadDvebPoPD5IhOmmNLrzRuuHdus+j lYwOgHqYqMh0/U6inf0Rh8DTcMgUT4L2/FP3Lnb73Ed2/m4GihhemgDBlbXwc7qm xOU1vZqerBNE0ivIyFP+zY/W9lm+kJzZe781pbbXwUILGNH4YUfZpWdq/G7GwhVk sx7JWAajs8Y31UYEraC4xIQ4W5bokE8u11k9DOT9D+XSo2Q4lJtN =X3GD -----END PGP SIGNATURE-----