• PGP Keys
• PGP keysigning policy
• Websites
• Computer

Latest Blog Posts

• Shutting down Windows from Linux
• E-mail alerts now work
• Error: Could not stat() command file '/var/lib/nagios3/rw/nagios.cmd'!
• WebOS development in vim
• Project 365

PGP keysigning policy, v1.1

Validity

This policy is valid for all signatures made with the following keys :

0xC5FE6DEB
Fingerprint : F3D5 2DAB 67F9 6AED 6784  CAF8 DDDF 39C6 C5FE 6DEB

0x4045D19B
Fingerprint : 3FFE E1D2 416B 29B9 F6D4  2DC1 DEF9 1428 4045 D19B

Requirements

Circumstances must be "normal", ie. we can take our time to verify identity, we're not surrounded by an angry mob with torches and pitchforks, ...

The signee (ie. you) is required to show me :
A government-issued proof of ID (like a national ID card) featuring a photograph
A piece of paper (printed or hand-written doesn't matter to me, as long as it is legible) containing:
The key ID and fingerprint of their pgp key
All UIDs on the key that I am expected to sign

You must make your public key available for me to obtain when I get home (the easiest way is just putting it on a keyserver).  

Signing

After verification of your fingerprint, I will sign the piece of paper by hand and take it home with me, where I will sign it with my own key(s) and send the results in encrypted e-mails to each of your UIDs so you can upload it to as many keyservers as you see fit.

Exceptions

It appears that keysigning parties sometimes have their own protocols (looking at the Fosdem KSP as an example).  In such a case, I'll simply follow conventions (this means, e.g., that I'll have the list of participants and their keydata with me, among other things).