Over the years I have probably taken some liberties with my private keys that I would have otherwise preferred not to take. I don’t believe that any of my keys created since March of 2011 have become compromised, but feel it’s probably best to start fresh. Also, previously I maintained five keys; an RSA key, a DSA key, a key for mobile use, along with separate RSA and DSA keys for the WellingtonNet admin. This is quite frankly a bit too much.
I have created a single new OpenPGP key 02c0515e and will be transitioning away from all of my old keys. If you have signed one or more of my old keys, I would appreciate your signature on my new key as well.
I am now using YubiKeys to store copies of my encryption signing and authentication keys, while the master certification key offline.
I have created a transition statement that can be downloaded from https://www.wellingtonnet.net/key-transition-2019-02-27.txt
Below is the signed statement.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 OpenPGP Key Transition Statement for Bill Wellington I have created a new OpenPGP key and will be transitioning away from my old key. The old keys have not been compromised and will continue to be valid for some time, but I prefer all future correspondence to be encrypted to the new key, and will be making signatures with the new key going forward. I would like this new key to be re-integrated into the web of trust. This message is signed by all my keys to certify the transition. My new and old keys are signed by each other. If you have signed my old keys, I would appreciate signatures on my new key as well, provided that your signing policy permits that without re-authenticating me. The old keys, which I am transitioning away from, are: pub 4096R/71CBE7AD 2011-03-15 pub 3072D/00C9D089 2011-03-15 pub 1024R/5324C6C6 2011-03-15 pub 4096R/4AFF8D68 2011-03-15 pub 3072D/D1D7A742 2011-03-15 The new key, to which I am transitioning, is: pub 4096R/02C0515E 2019-02-27 Key fingerprint = 5789 2205 8EED 7849 2058 4DFA 1A3F E8DD 02C0 515E The entire key may be downloaded from: https://www.wellingtonnet.net/02c0515e.txt To fetch the full new key from a public key server using GnuPG, run: gpg --keyserver keys.gnupg.net --recv-key 02c0515e If you already know my old key, you can now verify that the new key is signed by the old one: gpg --check-sigs 02c0515e If you are satisfied that you've got the right key, and the User IDs match what you expect, I would appreciate it if you would sign my key: gpg --sign-key 02c0515e You can upload your signatures to a public keyserver directly: gpg --keyserver keys.gnupg.net --send-key 02c0515e Or email bill@wellingtonnet.net (possibly encrypted) the output from: gpg --armor --export 02c0515e If you'd like any further verification or have any questions about the transition please contact me directly. To verify the integrity of this statement: wget -q -O- https://www.wellingtonnet.net/key-transition-2019-02-27.txt|gpg --verify Bill -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEESOrHfmbLtpbyq94DQ1NjesRE9JsFAlx3ZHcACgkQQ1NjesRE 9JvFLhAAgSP1JvsyaVwGmLGYZFpuh/ax6pG9EUYDyVoKSyeFMVNZZsvG4Y7PrYg2 nxORDZ5NwkyIaeZ0Fdg8ODcsSMjuEamhDb9RB13kTGrTVA9U2gjbKvG3qKp87eFh 1qi6Spu1tdwa5GFsEKkQKdRkSWLtYUSz8TSCLIBT7UlxYMJOZDsHsYFtSEitfPHD uWv8QmHm5oeXlzZMUnwNODlKYPQvhARBd7BpmbLLLTPYzeCjbGABonKI5eWlgiih 2I8EzVDBgJKAtQ2Pcm7OyNGSSlrgoWcuozlNTz+FMwSIidlkEfbVkWa9Uti9X7NA MLuuTr85+qnZxDfgdRVYnIjaQfOKU2APHLBdBLXdhGf/NsMIwIw8/5iQ4ZjGzYIs JJOyW1jVAnLzOoYP5HSxJt3Hiw2Zq1/zitUnmbB80oS0oPJDjScVNWW9D2F7l95w z4H+cRXuVhi+7zMhqExaVxRaI5lCBNvIGg7Yxdu3RAqwK9EvL87AzDI6hVK9WnLH Lu5ASCBDb8OoK01ZwbGtfi92hmZmzu7fRq5XX5pFnjkeXJW3cmcFT5EQqV5dY5VJ LxiJhCKmg/8VdesBvka0Xt6E+ziyRf5GgKwBapAyYbVpGUm3Pmzu3cmVMvZXswoC e9kGG9Y4KjYuSVyt2UlxXwzSiTF1hxE4ijWHv+4o8L8TYOV8eXOJAjMEAQEKAB0W IQQXDUSOrkcd8O3eAcEb9LiqYY5pjQUCXHdkeAAKCRAb9LiqYY5pjQZzD/9dZCee o3sw+sjf0efoJYh/Ii53o+RjAav21AgIR3YZ2Gr8L/LOL3RemmlA5lIEN83zB5+S 2aCChHmYSIRxijbW5N7AnwyOQX4OiWWjbkwyjZpVBMnCUt8fvV2pU9CJUl/qgHLw LXlZVFRnROHQOasJpi5d+C50cNSSiztRsmhBFOfr26+Jw0+QBkYbIyJHlLys2m0t bcUWgtX7A6YpKILlQSoi8wf20cC+mdOsyGsma2K0KoR+z0tyFreWGsrwo1WgDMLa xEx51YVey5OPru45thUerJG0gMxSVQp22pTG01olfyvucTcCkMIsnKrSFpN5xx1X 9WUumz27+U+S8JVbMgIUFu0ix4Tgqc5V7gCKCbkwdwf59Lq1ltVa0FvqoN3ITABW IKlQ7Z/9bEkU/gnzqRnAC35Nm4vfZZtLkSiIMWV2v5utXdw3Gs8n7b0unRhiNPy9 p3VKHdYvpfYtKvGlqofWFTYvTYwLoWYoQ1auZP4O6TdsqIw8s9ZmFw4i6X5omnzL StEqMi++bsLtIMO1Vn4eU2is89xzp2VnXZ2e8opKGP8/3NpPR2FLu09lTI604o42 eNepUpWqZH//tEMzsxilcguROQy9o8g80gGDFpVkWCy8b48PPIUwfzCy6Jr7CK6G gZoRcB1rUMJo3ET1zGxlWTZiASoojQy0tgzyq4h1BAERCgAdFiEEUg0hGKx1NFB+ phYE6RI/n6zQ9vcFAlx3ZHgACgkQ6RI/n6zQ9vfn4wD/ZV6VNcb1mdTgWdYqJ/G8 gYtynlUukw3UanusgjDCZYoBAP9yDZ7Qil1EcSCMQ/dteDiY1o/Mt+oVI6sfqjHA 0UlBiLMEAQEKAB0WIQSMGZXxEpbmq+5q1hUzjl/RUyTGxgUCXHdkeAAKCRAzjl/R UyTGxhsvBAC4SlzAKvCzagLWzRlJI6Jio+aHtmHgwHDkYoqfb7Z5LVIN4uYrZyZx 8vvy/R9ar8+dK871Bk1eHYLLentEgiIBRJI4T5G32sI4AxT38LfvA4Ru0pS2cKjq puKcjgat3nACydmJufOTywTqAkP6IEf60McWzEH1fU/oo21tcHsXPIkCMwQBAQoA HRYhBO0Dl1oe57Dvnf+fSulq4PNFfJVUBQJcd2R4AAoJEOlq4PNFfJVUeooQALKk ynMyWrOqVs7UVTWvttWHYeq2gWqbIcseEe8SbhI/kYOOiH67t8zi/N7eDqKJohDN f3eGqxBW8V4ZXzBXubXdbhsDz81qrczryL6vF0x56mhe/z6BqpAOjQiQdpX9xrx3 XlvHNpJ1inWIQ3Vd2mm7Sby58gsDrxxZXr1JHSLOdONbyo2YTx5M2zT+IRiyzmVm oU8l9bglwFo4mzr0ns6bpaV9cRk3CX7kmSlKw56AYWF56EqvOrJ4qZCjPJpfD8BO S623xkl/iEkbm51zTskID+FVdoUafzVOWu4NiMqRmcHi56UydImJpBKoM9JkhktY VDlnjh83WnOOSYgZ8cf7weyxbn1qwGD2kwZLmDXVhqh8Uv0nodidxp8JFRuwPACQ ib5ahG1uMHF9au49Ak/X2NOL5DgCDgJUY7g+0N0vF/8UHLFvvWTcTyqVXJ3CvEV9 jIIgWKdSsdyEz5DWdwIvSg07fp+B2U+A1vUztxy6Y/EOuOV/0FmRv1Ry1T+y8yt5 7m0ffwDaqHxfpWFFQoGk+5SoskQe+pKiyg342a2neRvNXDS7j5JMwMrmpcXP/Ckk FPe1Gbr+TFELijJjp5NPXDDss62MUf77Egip+AWy0aAQ157QjDijpqp/Q6yCombd l7Lf+VA2OiiUWu4ovvexEJS+CDQpJ7RgZWHSNZ7kiHUEAREKAB0WIQRI4vmmD60g SNpsorQgzI+c0denQgUCXHdkeAAKCRAgzI+c0denQj6ZAQCcOP5R3qqU1d+Am+O+ uySkGrD/xeC1528EGyiVKGJNWwEAqaA6Pp/E5WLRbwkzuqozZ4eF9JVYbH+Jjs4b wJ3haEY= =gu9z -----END PGP SIGNATURE-----