Hi everybody,

I am a bit out of the loop as far as cryptography algorithms and recommended key sizes are concerned. I have been using the same ssh and gpg keys for a long time.

However, I need to generate a few new keys (both ssh and gpg) that should meet high security standards (private use, but paranoid) and was wondering what options are the most common and recommended ones you are using today?

Thanks a lot to everybody in advance!

  • mlaga97@lemmy.mlaga97.space
    2·
    2 months ago

    SSH generally best to use ed25519, for GPG RSA4096 is better supported by HSMs and slightly more secure for longer-lived keys like root keys.

  • tla@lemmy.world
    1·
    2 months ago

    Others have provided the answer but if you want to explore system wide crypto policies check out update-crypto-policies

  • JubilantJaguar@lemmy.world
    12·
    2 months ago

    The correct answer to this question should be ''Whatever is the current default".

    If we have to ask and answer such questions as this (I’m unconvinced), then something is really wrong.