OpenPGP key transition
I am changing my OpenPGP/GPG key from this one to this one. Both keys are also available here and a proper key transition statement is here.
I have updated all the contact points on this website, but not the legacy site that is still kicking around. I have also signed the SSL statement with the new key that is mentioned in the About page.
It is important to note that the old key is not compromised and will remain active for some time. There are several reasons for the switch, but one of the main ones was my increasing discomfort at using a 1024-bit signing and certification master key. The new key has a much larger certification key and a separate signing subkey, as well as a separate encryption subkey.
I had previously intended to wait for ECC and the finalisation of the SHA-3 selection process before updating my old key, but I am no longer convinced that that was the best idea. Hence the change.
I would ask that anyone who has signed my old key (0x371AC5BFA04AE313) please review my transition document and, if satisfied, sign the new key (0x321E4E2373590E5D).
Originally published at Organised Adversary. Please leave any comments there.