New OpenPGP key generated utilizing Elliptic Curves

I have generated a new OpenPGP key that I will start migrate over to immediately, however, I do not really expect to revoke my current keys within the next few years for reasons found below. But before getting into that - the new key info. As per my usual setup the encryption subkey has a one year expiry. (I've also updated the keys 0x16E0CF8D6B0B9508 and 0x0B7F8B60E3EDFAE3 with new encryption subkeys for next year)

pub 521E/43FE956C542CA00B created: 2012-10-07 expires: never usage: SC
sub 521e/063FC02F1BFDEAA8 created: 2012-10-07 expires: 2013-12-30 usage: E

Why do I expect such a long migration path?

This key is an Elliptic Curve Public key following RFC6637. It is using a NIST curve of an ECC strength that is 521 bits, which relative to an RSA key should be about 15,360 bits. My RSA key that is this length apparently isn't supported in newer versions of GnuPG (version 2.1, that is using GPG Agent for storing the secret keys)

Currently the only implementation I'm familiar with that accept ECC keys is GnuPG 2.1, which is still in Beta. The SKS keyservers handle this type of key since version 1.1.4 and the sub-pool hkp:// require servers to be at this version, and is as such ECC safe .

The new key might also turn out to be replaced if we get an OpenPGP standard of versions 5 within a reasonable timeframe. Until then, contact me using whichever key you want - as long as you consider the value of your own privacy and is using one of them.

Year of cryptography?

Over the past few weeks I've been using my spare time to further improve upon , a project I've been running since 2006 (time flies). Most notably, I've constructed and implemented a new calculation of DNS Service Record (SRV) weights, that are used for calculation of which servers are to be included in various geographical sub-pools. As a result of this, the project now has geographical pools for; Europe, North America, Oceania and South America.In addition the server discovery process has been parallelized , and is in general far more robust. So far in 2012 an additional 3,104 lines of code has been added to this particular project.

The actual calculations are described in more details in this PDF document.


In addition, the IDEA implementation I wrote for libgcrypt / gnupg back in 2006 has finally been included into the main codebase (with some modifications, mainly by Alon and Ullrich), See [1] and [2].


That comes in addition to the publication of my book on sending secure emails. Is 2012 the year of cryptography for me? I certainly hope it continues to involve a lot of it going forwards as well.

Beginning 2012; LaTeX, Kindle and secure emails.

I love to read, in particular using the Amazon Kindle application on on either my Asus EEE Transformer Pad or my iPad. But being the computer geek that I also am, I figured it was about time to look into how the mass bunch of these books are deployed. As I already had a draft copy of a book titled Sending Emails - The Safe Way, something I wrote back in 2007-2008 while trying to explain the use of Digital Signatures and Encryption in order to secure emails, what better place to start testing.

The book itself is, as most I've written, prepared in a Document Preparation System called LaTeX. Ok, so the name might bring up some wrong associations, but the fact is, this is quite probably the best environment to write any scientific papers. In addition to having a very nice bibliography system called BibTeX for referencing, it is superior for equations, hence heavily used in particular in scientific academia. This, in addition to being built on the base of the typesetting system TeX, makes it far superior in terms of typesetting matters such as kerning, hyphenations and ligatures, something other writing tools (in particular MS Word) lack completely. As this isn't supposed to be a LaTeX post, I'll just stop there and refer to wikipedia and for more advantages to the curious.

But where greatness ends, trouble arise. As LaTeX is a typesetting system, it is naturally page oriented to either a book or an article format (in addition to other document classes). The Amazon Kindle format, as well as ePub and other generic formats, are on the other hand flow-oriented. That means that line-breaks and handling of hyphenations, that you would normally leave to the typesetter, is handled by the device on-the-run. Due to the limited capacity for resources, and the nature of the flow rendering (in page oriented it doesn't matter if creating the initial page takes some time, as it will only be done once (write-one-read-many)), the instruction set for flow-oriented documents is more limited.

The underlying format used for these devices is actually the same as used on this website (and any other), HTML (or for the prudent reader, the XML based counterpart XHTML with a subset of CSS). Ok, lets take a stop here. HTML was something I have used to mark up text for what is approaching two decades way too quickly. The simplified nature of it also means that the author is losing a lot of control of how things are viewed, but have to depend on proper formatting by the various devices on the market.

Accepting that I won't get things as pretty in the Kindle version compared to the PDF I, never the less, continue the conversion process from my .tex source files to the kindle format. First step using LaTexML. At this stage, however, I realize that a lot of the nice packages I've used while creating my PDF files, is incompatible with this tool, resulting in a need for defining various dummy commands and post-processing of the output HTML file, both automatically and manually before importing it in the eBook Creator. The sad thing actually is, that for an author that mainly expect to publish using digital media, it is far beneficial to just stay away from more advanced tools and write the HTML by hand, just as we did back in the mid 1990s when first introduced to the Internet. Truly an impressive progress....

An increasing number of the eBooks that are distributed are prepared by lay-men, and the automatic tools for conversion by Amazon is more targeted towards Microsoft Word documents than anything else. But hey, it boost the available products and is cheap for the distributors, so I would probably do the same if I were them, but I still consider it a shame.

In any case, while I'm contemplating other (fiction-related) projects for 2012, at least I've gotten around to testing the system a bit and made my first book available at both Amazon Kindle (eBook) and a printed version (certainly no surprise that I'm most satisfied regarding the printed version).

Happy New Years! (and feel free to visit my page on