Difference between revisions of "KWLUG Keysigning 2016-08-08"

From SOBAC Wiki
Jump to navigation Jump to search
(Added Informal Keysigning hint)
m (Calling myself a Keymaster)
 
(2 intermediate revisions by the same user not shown)
Line 1: Line 1:
[[File:KWCrypto-logo-96x96.jpeg|thumb|link=KWCrypto|KWCrypto]]I'm conducting at [[Formal Keysigning]] at the [http://kwlug.org/node/1039 August 2016 meeting of KWLUG]
+
[[File:KWCrypto-logo-96x96.jpeg|thumb|link=KWCrypto|KWCrypto]]I'll be the Keymaster at a [[Formal Keysigning]] at the [http://kwlug.org/node/1039 August 2016 meeting of KWLUG]
  
 
For a formal keysigning I'll need copies of your GnuPG/PGP Public Key, then after the keysigning event I'll ensure that everyone has a copy of all the signed keys.
 
For a formal keysigning I'll need copies of your GnuPG/PGP Public Key, then after the keysigning event I'll ensure that everyone has a copy of all the signed keys.
Line 6: Line 6:
  
 
# E-mail your public key to [mailto:bjonkman@sobac.com bjonkman@sobac.com]
 
# E-mail your public key to [mailto:bjonkman@sobac.com bjonkman@sobac.com]
# I publish the keyring in an [http://sobac.com/owncloud/s/xy2nXhkWRR4STSx ownCloud shared folder], and add it to a '''Keysigning Keyring'''; you can download it to verify that your key is correct (I'll send the password when I receive your public key).
+
# I publish your public key in an [http://sobac.com/owncloud/s/xy2nXhkWRR4STSx ownCloud shared folder], and add it to a '''Keysigning Keyring'''; you can download it to verify that your key is correct (I'll send the password when I receive your public key).
 
# Come to the KWLUG meeting on Monday, 8 August 2016, and bring a copy of your public key so you can read out your fingerprint independently from the list that I'll be providing.
 
# Come to the KWLUG meeting on Monday, 8 August 2016, and bring a copy of your public key so you can read out your fingerprint independently from the list that I'll be providing.
# After the meeting, you carefully verify that the key fingerprint you have in your keyring matches the fingerprint you verified at the meeting, then you sign the keys of those people that you verified.
+
# After the meeting, you carefully verify that the key fingerprints you have in your keyring match the fingerprints you verified at the meeting, then you sign the keys of those people that you verified.
 
# E-mail me the signed keys (or upload to the [http://sobac.com/owncloud/s/xy2nXhkWRR4STSx ownCloud shared folder]).
 
# E-mail me the signed keys (or upload to the [http://sobac.com/owncloud/s/xy2nXhkWRR4STSx ownCloud shared folder]).
 
# I'll import all the signed keys into the '''Keysigning Keyring''', I'll sign all the keys with the '''Keysigning Key''', I'll update the [http://sobac.com/owncloud/s/xy2nXhkWRR4STSx ownCloud shared folder], and I'll e-mail all the signed keys from everyone back to you too.
 
# I'll import all the signed keys into the '''Keysigning Keyring''', I'll sign all the keys with the '''Keysigning Key''', I'll update the [http://sobac.com/owncloud/s/xy2nXhkWRR4STSx ownCloud shared folder], and I'll e-mail all the signed keys from everyone back to you too.

Latest revision as of 22:07, 10 July 2016

KWCrypto

I'll be the Keymaster at a Formal Keysigning at the August 2016 meeting of KWLUG

For a formal keysigning I'll need copies of your GnuPG/PGP Public Key, then after the keysigning event I'll ensure that everyone has a copy of all the signed keys.

There are full instructions for preparation before the meeting, and full instructions for follow up. But here are simplified instructions -- simpler for both the participants, and simpler for me too:

  1. E-mail your public key to bjonkman@sobac.com
  2. I publish your public key in an ownCloud shared folder, and add it to a Keysigning Keyring; you can download it to verify that your key is correct (I'll send the password when I receive your public key).
  3. Come to the KWLUG meeting on Monday, 8 August 2016, and bring a copy of your public key so you can read out your fingerprint independently from the list that I'll be providing.
  4. After the meeting, you carefully verify that the key fingerprints you have in your keyring match the fingerprints you verified at the meeting, then you sign the keys of those people that you verified.
  5. E-mail me the signed keys (or upload to the ownCloud shared folder).
  6. I'll import all the signed keys into the Keysigning Keyring, I'll sign all the keys with the Keysigning Key, I'll update the ownCloud shared folder, and I'll e-mail all the signed keys from everyone back to you too.
  7. You import the all the keys into your own keyring again, so that you have all the signatures on everyone's keys.
  8. If you want, you can upload your own signed public key to the keyservers.

Remember, don't upload other people's public keys to the keyservers without their permission. Not everyone wants their GnuPG/PGP key (which usually has an e-mail address) to be easily harvestable by the spammers.

If there's time, perhaps we can have an Informal Keysigning too!


What: Formal Keysigning at the Short Presentations and Activities meeting of KWLUG
When: Monday, 8 August 2016 from 7:00pm to 9:00pm
Where: St. John's Kitchen, 97 Victoria Street North, Kitchener, Ontario Map
Website: http://kwlug.org/node/1039

See you there! --Bob Jonkman