The Debian OpenPGP keyring is a vital part of the project's infrastructure: It provides a secure way to ensure each participant's identity in a way amenable to the geographically distributed nature of the project, and is used for basically all actions requiring authentication — Package uploads, General Resolution votes, mails to the =-announce= lists, etc.
For several years already, the keyring maintenance team has been pushing to migrate to more secure keys. In July 2010, the last PGPv3 keys were replaced. The current push is to get developers to migrate from older 1024D keys to (at least) 4096R keys.
In this talk, we want to: