Trust Registry EN

Key Rotation History

History of all planned and emergency key rotation events.

Q1 2024 Annual Rotation
scheduled

Annual scheduled rotation from first-generation Ed25519 key to second-generation primary key.

Predecessor
ed25519-2023-primary — retired Jan 31, 2024
Successor
ed25519-2024-primary — activated Jan 1, 2024
Overlap window
Jan 1 – Jan 31, 2024 (31 days)
Authorized by
jdoe
Completed
Feb 1, 2024

During the overlap window, both keys were valid. Artifacts signed during this period can be verified with either key.

One-month overlap to allow re-signing of long-lived artifacts. Rotation completed without incident. RSA-to-Ed25519 migration already handled separately via revocation.

Emergency Rotation — Oct 2025 Key Compromise Emergency
emergency

Emergency rotation triggered by confirmed private key exposure via automated credential scan alert on 2025-10-14.

Predecessor
ed25519-2024-compromised — retired Oct 14, 2025
Successor
ed25519-2025-emergency-replacement — activated Oct 14, 2025
Authorized by
jdoe
Incident
INC-2025-1014-001
Completed
Oct 14, 2025

Revocation-to-activation gap: 1h28m. Total remediation time: 2h00m. Within 4h policy target.

Q1 2025 Annual Rotation
scheduled

Annual scheduled rotation activating generation-4 primary Ed25519 key. 44-day overlap window with predecessor.

Predecessor
ed25519-2024-primary — retired Feb 28, 2025
Successor
ed25519-2025-primary — activated Jan 15, 2025
Overlap window
Jan 15 – Feb 28, 2025 (44 days)
Authorized by
jdoe
Completed
Mar 1, 2025

During the overlap window, both keys were valid. Artifacts signed during this period can be verified with either key.

Extended overlap for major version tag artifacts requiring dual-key verification during transition. All pipelines migrated. No dual-signing complaints received.

Q1 2026 Annual Rotation
scheduled

Annual scheduled rotation activating generation-5 primary Ed25519 key. 16-day overlap window with predecessor.

Predecessor
ed25519-2025-primary — retired Jan 31, 2026
Successor
ed25519-2026-primary — activated Jan 15, 2026
Overlap window
Jan 15 – Jan 31, 2026 (16 days)
Authorized by
jdoe
Completed
Feb 1, 2026

During the overlap window, both keys were valid. Artifacts signed during this period can be verified with either key.

Shorter overlap window than prior years due to alignment with certificate expiry date. All pipelines migrated before predecessor retirement.