Add key signing policy

This commit is contained in:
Jesper Hess 2015-02-17 08:19:15 +01:00
parent eee891c940
commit 7440a17ff5
3 changed files with 105 additions and 1 deletions

View file

@ -6,6 +6,8 @@ layout: default
* [My blog](https://blog.graffen.dk)
* [About Me](https://about.me/graffen)
* [PGP Key Signing Policy](/keysigning/policy)
[Signed version](/keysigning/policy/index.md.asc)
# Crypto
Get a GPG-signed version of the markdown behind this page [here](index.md.asc). Use this signature to verify that
@ -16,6 +18,7 @@ the below information is correct.
* GPG Key Fingerprint: `03CD 582F 13C0 682C 8F52 9C05 8417 0D85 CAEB D4B2`
Download my key [here](graffen.asc) or grab it from your key server of choice.
*NB! New Key!* Read my [Transition Notice](/transition-notice.html) here.
I also have a [Key Signing Policy](/keysigning/policy)
* OTR Keys
* Jabber: graffen@graffen.dk/Laptop: `73B09ADB A4EFF7D4 42A3FC69 35E18AF5 73DEFDCC`
* Jabber: graffen@graffen.dk/Home: `59C3E1EF 4D17DB9F A73FB5C3 4AEEFE35 76FB11A9`

View file

@ -0,0 +1,41 @@
---
layout: default
---
# GPG Keysigning Policy
## Key Information
pub 4096R/0x84170D85CAEBD4B2 2014-10-15
Key fingerprint = 03CD 582F 13C0 682C 8F52 9C05 8417 0D85 CAEB D4B2
uid [ultimate] Jesper Hess Nielsen <jesper@graffen.dk>
uid [ultimate] Jesper Hess Nielsen <mail@jesperhess.com>
uid [ultimate] Jesper Hess Nielsen <graffen@keybase.io>
sub 4096R/0x351A89E40D763F0F 2014-10-15 [expires: 2017-02-12]
sub 4096R/0x72CA3526265EE03C 2014-10-15 [expires: 2017-02-12]
sub 4096R/0x34516323BA9366C2 2014-10-15 [expires: 2017-02-12]
## Key Signing
I am willing to sign keys at keysigning parties and conferences. Please, do not email me requesting that I sign a key if we do not already know each other.
## Signature Requirements
I am willing to sign the following types of keys:
* Personal Keys
* Group and Shared Keys
* Corporate Keys
* Pseudonymous Keys
## My requirements per signature trust level are as follows
I generally only sign keys with trust levels 0x12 and 0x13.
* 0x12: I have done casual checking
* I will normally only use this level for company and pseudonymous keys.
* I will use this level if I cannot safely verify your identity. For example if you hold a foreign identification that I do not recognize or cannot safely verify the authenticity of.
* 0x13: I have done very careful checking
* I will sign your key if we meet in person and exchange Danish government-issued identification and key fingerprints if we don't know each other.
* I will sign your key if we cannot meet in person but someone I ultimately trust notifies me that you want a signature, and gives me your key id verbally or in person.
* I will sign your key without meeting in person if I know you very well personally (such as working with you, going to school with you, family etc.) and we can exchange key fingerprints in another fashion such as over the phone.

View file

@ -0,0 +1,60 @@
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
- ---
layout: default
- ---
# GPG Keysigning Policy
## Key Information
pub 4096R/0x84170D85CAEBD4B2 2014-10-15
Key fingerprint = 03CD 582F 13C0 682C 8F52 9C05 8417 0D85 CAEB D4B2
uid [ultimate] Jesper Hess Nielsen <jesper@graffen.dk>
uid [ultimate] Jesper Hess Nielsen <mail@jesperhess.com>
uid [ultimate] Jesper Hess Nielsen <graffen@keybase.io>
sub 4096R/0x351A89E40D763F0F 2014-10-15 [expires: 2017-02-12]
sub 4096R/0x72CA3526265EE03C 2014-10-15 [expires: 2017-02-12]
sub 4096R/0x34516323BA9366C2 2014-10-15 [expires: 2017-02-12]
## Key Signing
I am willing to sign keys at keysigning parties and conferences. Please, do not email me requesting that I sign a key if we do not already know each other.
## Signature Requirements
I am willing to sign the following types of keys:
* Personal Keys
* Group and Shared Keys
* Corporate Keys
* Pseudonymous Keys
## My requirements per signature trust level are as follows
I generally only sign keys with trust levels 0x12 and 0x13.
* 0x12: I have done casual checking
* I will normally only use this level for company and pseudonymous keys.
* I will use this level if I cannot safely verify your identity. For example if you hold a foreign identification that I do not recognize or cannot safely verify the authenticity of.
* 0x13: I have done very careful checking
* I will sign your key if we meet in person and exchange Danish government-issued identification and key fingerprints if we don't know each other.
* I will sign your key if we cannot meet in person but someone I ultimately trust notifies me that you want a signature, and gives me your key id verbally or in person.
* I will sign your key without meeting in person if I know you very well personally (such as working with you, going to school with you, family etc.) and we can exchange key fingerprints in another fashion such as over the phone.
-----BEGIN PGP SIGNATURE-----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=RTFG
-----END PGP SIGNATURE-----