James P. Howard, II wrote: > Can anyone explain why there is a difference between signing and > encrypting keypairs, even for the same type (RSA)?
The shift from single keypairs to multiple keypairs was motivated by a lot of concerns. IMO, most of those concerns failed to materialize. For instance, some people say that separate signing and encrypting keys is best, since if an encryption key gets compromised you can just revoke the encryption part and leave your signing key intact. In reality, compromise tends to be an all or nothing affair: either the entire cert is suspect or it's not. _______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
