Difference between revisions of "KWLUG Keysigning 2016-08-08"

From SOBAC Wiki
Jump to navigation Jump to search
(Participant Instructions for KWLUG Keysigning 2016-08-08)
 
m (Calling myself a Keymaster)
 
(7 intermediate revisions by the same user not shown)
Line 1: Line 1:
I'm conducting at [[Formal Keysigning]] at the [http://kwlug.org/node/1039 August 2016 meeting of KWLUG]
+
[[File:KWCrypto-logo-96x96.jpeg|thumb|link=KWCrypto|KWCrypto]]I'll be the Keymaster at a [[Formal Keysigning]] at the [http://kwlug.org/node/1039 August 2016 meeting of KWLUG]
  
For a formal keysigning I'll need copies of participants' GnuPG/PGP Public Keys, which I'll collect in one '''Keysigning Keyring'''. Then I'll publish a list of participants and their key fingerprints, and then after the formal portion I'll sign all the participants' keys with the '''Keysigning Key''' I've generated specifically for the keysigning.
+
For a formal keysigning I'll need copies of your GnuPG/PGP Public Key, then after the keysigning event I'll ensure that everyone has a copy of all the signed keys.
  
 
There are [[Formal Keysigning#ToDo_for_the_Participants|full instructions for preparation before the meeting]], and [[Formal Keysigning#Participants|full instructions for follow up]]. But here are simplified instructions -- simpler for both the participants, and simpler for me too:
 
There are [[Formal Keysigning#ToDo_for_the_Participants|full instructions for preparation before the meeting]], and [[Formal Keysigning#Participants|full instructions for follow up]]. But here are simplified instructions -- simpler for both the participants, and simpler for me too:
  
# E-mail your public key to bjonkman@sobac.com
+
# E-mail your public key to [mailto:bjonkman@sobac.com bjonkman@sobac.com]
# I publish the keyring in an [http://sobac.com/owncloud/s/xy2nXhkWRR4STSx ownCloud shared folder], you can download it to verify that your key is correct (I'll send the password when I receive your public key).
+
# I publish your public key in an [http://sobac.com/owncloud/s/xy2nXhkWRR4STSx ownCloud shared folder], and add it to a '''Keysigning Keyring'''; you can download it to verify that your key is correct (I'll send the password when I receive your public key).
 
# Come to the KWLUG meeting on Monday, 8 August 2016, and bring a copy of your public key so you can read out your fingerprint independently from the list that I'll be providing.
 
# Come to the KWLUG meeting on Monday, 8 August 2016, and bring a copy of your public key so you can read out your fingerprint independently from the list that I'll be providing.
# After the meeting, carefully verify that the key fingerprint you have matches the fingerprint you verified at the meeting, then sign the keys of those people that you verified.
+
# After the meeting, you carefully verify that the key fingerprints you have in your keyring match the fingerprints you verified at the meeting, then you sign the keys of those people that you verified.
 
# E-mail me the signed keys (or upload to the [http://sobac.com/owncloud/s/xy2nXhkWRR4STSx ownCloud shared folder]).
 
# E-mail me the signed keys (or upload to the [http://sobac.com/owncloud/s/xy2nXhkWRR4STSx ownCloud shared folder]).
# I'll import all the keys into the '''Keysigning Keyring''', sign all the keys with the '''Keysigning Key''', update the [http://sobac.com/owncloud/s/xy2nXhkWRR4STSx ownCloud shared folder], and I'll e-mail them back to you too.
+
# I'll import all the signed keys into the '''Keysigning Keyring''', I'll sign all the keys with the '''Keysigning Key''', I'll update the [http://sobac.com/owncloud/s/xy2nXhkWRR4STSx ownCloud shared folder], and I'll e-mail all the signed keys from everyone back to you too.
 
# You import the all the keys into your own keyring again, so that you have all the signatures on everyone's keys.
 
# You import the all the keys into your own keyring again, so that you have all the signatures on everyone's keys.
# If you want, you can upload your signed public key to the keyservers.
+
# If you want, you can upload your own signed public key to the keyservers.
  
 
Remember, don't upload other people's public keys to the keyservers without their permission. Not everyone wants their GnuPG/PGP key (which usually has an e-mail address) to be easily harvestable by the spammers.
 
Remember, don't upload other people's public keys to the keyservers without their permission. Not everyone wants their GnuPG/PGP key (which usually has an e-mail address) to be easily harvestable by the spammers.
 +
 +
If there's time, perhaps we can have an [[Informal Keysigning]] too!
  
  
Line 21: Line 23:
 
:'''Where''': St. John's Kitchen, 97 Victoria Street North, Kitchener, Ontario [http://osm.org/go/ZXnwWYXd?m= Map]
 
:'''Where''': St. John's Kitchen, 97 Victoria Street North, Kitchener, Ontario [http://osm.org/go/ZXnwWYXd?m= Map]
 
:'''Website''': http://kwlug.org/node/1039
 
:'''Website''': http://kwlug.org/node/1039
 +
 +
See you there!
 +
--Bob Jonkman
  
 
[[Category:KWCrypto]]
 
[[Category:KWCrypto]]
 +
[[Category:Events]]

Latest revision as of 23:07, 10 July 2016

KWCrypto

I'll be the Keymaster at a Formal Keysigning at the August 2016 meeting of KWLUG

For a formal keysigning I'll need copies of your GnuPG/PGP Public Key, then after the keysigning event I'll ensure that everyone has a copy of all the signed keys.

There are full instructions for preparation before the meeting, and full instructions for follow up. But here are simplified instructions -- simpler for both the participants, and simpler for me too:

  1. E-mail your public key to bjonkman@sobac.com
  2. I publish your public key in an ownCloud shared folder, and add it to a Keysigning Keyring; you can download it to verify that your key is correct (I'll send the password when I receive your public key).
  3. Come to the KWLUG meeting on Monday, 8 August 2016, and bring a copy of your public key so you can read out your fingerprint independently from the list that I'll be providing.
  4. After the meeting, you carefully verify that the key fingerprints you have in your keyring match the fingerprints you verified at the meeting, then you sign the keys of those people that you verified.
  5. E-mail me the signed keys (or upload to the ownCloud shared folder).
  6. I'll import all the signed keys into the Keysigning Keyring, I'll sign all the keys with the Keysigning Key, I'll update the ownCloud shared folder, and I'll e-mail all the signed keys from everyone back to you too.
  7. You import the all the keys into your own keyring again, so that you have all the signatures on everyone's keys.
  8. If you want, you can upload your own signed public key to the keyservers.

Remember, don't upload other people's public keys to the keyservers without their permission. Not everyone wants their GnuPG/PGP key (which usually has an e-mail address) to be easily harvestable by the spammers.

If there's time, perhaps we can have an Informal Keysigning too!


What: Formal Keysigning at the Short Presentations and Activities meeting of KWLUG
When: Monday, 8 August 2016 from 7:00pm to 9:00pm
Where: St. John's Kitchen, 97 Victoria Street North, Kitchener, Ontario Map
Website: http://kwlug.org/node/1039

See you there! --Bob Jonkman