After nearly a decade, I have generated a new 4096-bit RSA PGP/GPG key. The new key reflects the latest OpenPGP best practices. You can also view my key transition announcement for instructions on obtaining this key. The transition announcement has been signed by both the old and new (replacement) key.
If you are using gpg
, you may want to add the following to your ~/.gnupg/gpg.conf
configuration:
personal-digest-preferences SHA512
cert-digest-algo SHA512
in order to prepare for the eventual migration off of SHA-1 in OpenPGP.