1
I have an 10-year-old GnuPG key that's 1024-bit DSA. I don't use it much for signing emails, but I use it a lot for encrypting files.
I would like to (I assume) revoke this key and create a new 4096- or 8192-bit RSA key. However, I need to ensure that I do not lose any of the files that are currently encrypted with my old key. I presume this means that I will still have a copy of my old private key, somehow marked "revoked" so it won't be used for anything new, and a new private key with the same full name and email address which would be used by default for encrypting files in the future.
Is this a safe and standard and supported plan? Is there anything I need to know before boldly charging forward (other than "have a couple of good backups")?