Short OpenPGP key IDs (with 32 bits / 8 hex characters) are subject to collision attacks. It is strongly recommended to stop using 32 bit IDs:
Stop using 32bit key ids
It takes 4 seconds to generate a colliding 32bit key id on a GPU (using scallion). Key servers do little verification of uploaded keys and allow keys with colliding 32bit ids. Further, GPG uses 32bit key ids throughout its interface and does not warn you when an operation might apply to multiple keys.
But how do I tell GnuPG to use long IDs (with 64 bits, or 16 hex characters)?
Aucun commentaire:
Enregistrer un commentaire