Propiedades da subchave OpenPGP

Each OpenPGP key has a single master key used to sign only. Subkeys are used to encrypt and to sign as well. In this way, if your sub key is compromised, you don't need to revoke your master key.

Identificador

Este é o identificador da subchave.

Tipo

Especifica o algoritmo de cifrado usado para xerar a subchave. As chaves DSA só poden asinar. As chaves ElGamal úsanse para cifrar mentres que as chaves RSA úsanse para asinar e cifrar.

Creada

Indica a data na que se creou a chave.

Expira

Indica a data na que non se poderá usar máis a chave.

Estado

Indica o estado da chave.

Forza

Indica a lonxitude en bits dunha chave. En xeral canto máis larga sea a chave, máis seguranza fornecerá.

A long key is not enough to make up for the use of a weak passphrase.

6.1. Engadir unha subchave

To add a subkey to a key, from the Subkeys section click on Add button.

After following the instructions above, you will be presented with a dialog to fill in. The fields are detailed below.

Tipo de chave

Especifica o algoritmo de cifrado usado para xerar a subchave.

DSA

Use o Algoritmo Digital Signature (DSA) para crear a subchave. Esta subchave só poderá asinar.

ElGamal

Use the ElGamal algorithm to create the subkey. This subkey can encrypt only.

RSA

Use the Rivest-Shamir Adleman (RSA) algorithm to create the subkey. This subkey can be used to sign or encrypt, but you have to create two different subkeys.

Lonxitude de chave

Indicates the length in bits of the subkey. In general the longer the key, the more security it provides.

Data de caducidade

Indicates the date the subkey can no longer be used.

6.2. Changing a Subkey Expiration Date

To change a subkey expiration date, select the subkey from the Subkeys section, then:

  • Click on the Expire button on the left,
  • From the date dialog choose the new expiration date or select Never expires for no expiration date.

6.3. Revogar unha subchave

To revoke a subkey, select the subkey from the Subkeys section, then:

  • Click on the Revoke button on the left,

  • Choose a reason why to revoke the subkey:

    No Reason

    There isn't a specific reason to revoke the key.

    Compromised

    The key has been compromised.

    Superseded

    The key has been superseded by another one.

    Not Used

    The key is not used anymore.

  • Enter a description of why you are revoking the key,

  • Click on Revoke.

The effect of revoking a subkey is immediate.

6.4. Eliminar unha subchave

To delete a subkey, select the subkey from the Subkeys section, then:

  • Click on the Delete button on the left.