Over the years I have probably taken some liberties with my private keys that I would have otherwise preferred not to take. I don’t believe that any of my keys created since March of 2011 have become compromised, but feel it’s probably best to start fresh. Also, previously I maintained five keys; an RSA key, a DSA key, a key for mobile use, along with separate RSA and DSA keys for the WellingtonNet admin. This is quite frankly a bit too much.
I have created a single new OpenPGP key 02c0515e and will be transitioning away from all of my old keys. If you have signed one or more of my old keys, I would appreciate your signature on my new key as well.
I am now using YubiKeys to store copies of my encryption signing and authentication keys, while the master certification key offline.
I have created a transition statement that can be downloaded from https://www.wellingtonnet.net/key-transition-2019-02-27.txt
Below is the signed statement.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
OpenPGP Key Transition Statement for Bill Wellington
I have created a new OpenPGP key and will be transitioning away from
my old key. The old keys have not been compromised and will continue to
be valid for some time, but I prefer all future correspondence to be
encrypted to the new key, and will be making signatures with the new
key going forward.
I would like this new key to be re-integrated into the web of trust.
This message is signed by all my keys to certify the transition. My new
and old keys are signed by each other. If you have signed my old keys,
I would appreciate signatures on my new key as well, provided that
your signing policy permits that without re-authenticating me.
The old keys, which I am transitioning away from, are:
pub 4096R/71CBE7AD 2011-03-15
pub 3072D/00C9D089 2011-03-15
pub 1024R/5324C6C6 2011-03-15
pub 4096R/4AFF8D68 2011-03-15
pub 3072D/D1D7A742 2011-03-15
The new key, to which I am transitioning, is:
pub 4096R/02C0515E 2019-02-27
Key fingerprint = 5789 2205 8EED 7849 2058 4DFA 1A3F E8DD 02C0 515E
The entire key may be downloaded from: https://www.wellingtonnet.net/02c0515e.txt
To fetch the full new key from a public key server using GnuPG, run:
gpg --keyserver keys.gnupg.net --recv-key 02c0515e
If you already know my old key, you can now verify that the new key is
signed by the old one:
gpg --check-sigs 02c0515e
If you are satisfied that you've got the right key, and the User IDs
match what you expect, I would appreciate it if you would sign my key:
gpg --sign-key 02c0515e
You can upload your signatures to a public keyserver directly:
gpg --keyserver keys.gnupg.net --send-key 02c0515e
Or email bill@wellingtonnet.net (possibly encrypted) the output from:
gpg --armor --export 02c0515e
If you'd like any further verification or have any questions about the
transition please contact me directly.
To verify the integrity of this statement:
wget -q -O- https://www.wellingtonnet.net/key-transition-2019-02-27.txt|gpg --verify
Bill
-----BEGIN PGP SIGNATURE-----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=gu9z
-----END PGP SIGNATURE-----