A year (or two?) ago we did a key signing at installfest. I keep my private key locked up and encrypted and only use it for signing other keys, which I do off line. So I have sub-keys that I'd use for routine signing and encrypting. So here's another person who had the same idea, for pretty much the same reasons: http://blog.liw.fi/posts/subkeys/ Dave