Ugh. that's horrifically long either way. Is a base64 encoding worth
considering? it would shave off a third of the length, but it seems
like it would introduce significant ambiguity (0 vs O, A vs a, etc)
I would go the other way. Since collision-resistance is not an issue with
fingerprints, 128 bits are perfectly adequate for 2048-bit keys (i.e. breaking
the key and making a new key matching the fingerprint require about the same
amount of work). Also, keeping mobile phones in mind, I would suggest using 40
decimal digits. This way, the total length of fingerprints remain the same (40
characters), but typing them in on a decimal keypad would be much faster than
currently.
--
Daniel
signature.asc
Description: OpenPGP digital signature