[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
72nd IETF - PGP Key Signing
Once again, we will be holding a PGP Key signing party at the 72nd IETF
meeting in Dublin. We have been scheduled to meet at 16:10 on the evening
of Wednesday, Jul 30 in the Conservatory. Note that we have a very tight
time-slot between the last afternoon session and the plenary, so please
be on time.
In addition to the normal key-signing (details below), it has been
suggested that this event would be a good venue for people to gain
points in the certification systems operated by CAcert and Thawte. So,
if you are a Thawte Notary or CAcert Assurer, please consider joining
us. Those wishing to participate should note that both systems require
that you be registered with the system and present one or more identity
documents, of which the Assurer/Notary must retain copies. We will not
have a photocopier available during the session, so participants should
make several copies of their documents in advance. The hotel business
center is located on the 2nd floor of the main hotel; ask at the hotel
reception desk for details.
For more information on CAcert and Thawte, see http://www.cacert.org/
and http://www.thawte.com/secure-email/web-of-trust-wot/index.html
The procedure we will use for the PGP key signing is the following:
o People who wish to participate may do so in one of two ways. You may
bring slips of paper with your name, e-mail address, key-id, and key
fingerprint. (One way of generating this if using gpg is "gpg
--list-keys --fingerprint my_username at hostname") You should bring
enough for everyone who may attend; given recent attendance patterns,
around 50 should be more than enough. (You can generally fit 10-12
strips containing your key fingerprint on a single sheet of paper, and
then cut out strips to hand out.)
o Alternatively, you may email an ASCII extract of their PGP public key
to <jhutz at cmu.edu> by noon on Wednesday, Jul 30. Please include
a subject line of "IETF PGP KEY", and please DO NOT MIME-ENCRYPT your
e-mail; send it to me as plain text.
The method of generating the ASCII extract under Unix is:
pgp -kxa my_email_address mykey.asc (pgp 2.6.2)
pgpk -xa my_email_address > mykey.asc (pgp 5.x)
gpg --export -a my_email_address > mykey.asc (gpg)
If you're using Windows or Macintosh, hopefully it will be Intuitively
Obvious (tm) using the GUI interface how to generate an ASCII armored
key that begins "-----BEGIN PGP PUBLIC KEY BLOCK-----".
o By 14:00From ietf-announce-bounces at ietf.org Sun Jul 27 14:40:24 2008
Return-Path: <ietf-announce-bounces at ietf.org>
X-Original-To: ietf-announce-archive at megatron.ietf.org
Delivered-To: ietfarch-ietf-announce-archive at core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1])
by core3.amsl.com (Postfix) with ESMTP id D25ED3A69E1;
Sun, 27 Jul 2008 14:40:23 -0700 (PDT)
X-Original-To: ietf-announce at ietf.org
Delivered-To: ietf-announce at core3.amsl.com
Received: by core3.amsl.com (Postfix, from userid 30)
id 3EA9E3A69C8; Sun, 27 Jul 2008 14:40:21 -0700 (PDT)
From: IETF Secretariat <ietf-secretariat at ietf.org>
To: IETF Announcement list <ietf-announce at ietf.org>
Subject: 72nd IETF - PGP Key Signing
Mime-Version: 1.0
Message-Id: <20080727214022.3EA9E3A69C8 at core3.amsl.com>
Date: Sun, 27 Jul 2008 14:40:22 -0700 (PDT)
Cc: wgchairs at ietf.org, bofchairs at ietf.org, irtf at isi.edu
X-BeenThere: ietf-announce at ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "IETF announcement list. No discussions." <ietf-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ietf-announce>,
<mailto:ietf-announce-request at ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/ietf-announce>
List-Post: <mailto:ietf-announce at ietf.org>
List-Help: <mailto:ietf-announce-request at ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-announce>,
<mailto:ietf-announce-request at ietf.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: ietf-announce-bounces at ietf.org
Errors-To: ietf-announce-bounces at ietf.org
Once again, we will be holding a PGP Key signing party at the 72nd IETF
meeting in Dublin. We have been scheduled to meet at 16:10 on the evening
of Wednesday, Jul 30 in the Conservatory. Note that we have a very tight
time-slot between the last afternoon session and the plenary, so please
be on time.
In addition to the normal key-signing (details below), it has been
suggested that this event would be a good venue for people to gain
points in the certification systems operated by CAcert and Thawte. So,
if you are a Thawte Notary or CAcert Assurer, please consider joining
us. Those wishing to participate should note that both systems require
that you be registered with the system and present one or more identity
documents, of which the Assurer/Notary must retain copies. We will not
have a photocopier available during the session, so participants should
make several copies of their documents in advance. The hotel business
center is located on the 2nd floor of the main hotel; ask at the hotel
reception desk for details.
For more information on CAcert and Thawte, see http://www.cacert.org/
and http://www.thawte.com/secure-email/web-of-trust-wot/index.html
The procedure we will use for the PGP key signing is the following:
o People who wish to participate may do so in one of two ways. You may
bring slips of paper with your name, e-mail address, key-id, and key
fingerprint. (One way of generating this if using gpg is "gpg
--list-keys --fingerprint my_username at hostname") You should bring
enough for everyone who may attend; given recent attendance patterns,
around 50 should be more than enough. (You can generally fit 10-12
strips containing your key fingerprint on a single sheet of paper, and
then cut out strips to hand out.)
o Alternatively, you may email an ASCII extract of their PGP public key
to <jhutz at cmu.edu> by noon on Wednesday, Jul 30. Please include
a subject line of "IETF PGP KEY", and please DO NOT MIME-ENCRYPT your
e-mail; send it to me as plain text.
The method of generating the ASCII extract under Unix is:
pgp -kxa my_email_address mykey.asc (pgp 2.6.2)
pgpk -xa my_email_address > mykey.asc (pgp 5.x)
gpg --export -a my_email_address > mykey.asc (gpg)
If you're using Windows or Macintosh, hopefully it will be Intuitively
Obvious (tm) using the GUI interface how to generate an ASCII armored
key that begins "-----BEGIN PGP PUBLIC KEY BLOCK-----".
o By 14:00 on Wedn on Wednesday, you will be able to fetch complete key ring
from any of the following locations with all of the keys that were
submitted:
/afs/grand.central.org/project/ietf-pgp/ietf72/ietf72.pgp
http://grand.central.org/dl/ietf-pgp/ietf72/ietf72.pgp
ftp://grand.central.org/pub/ietf-pgp/ietf72/ietf72.pgp
o At 16:10, come prepared with the PGP Key fingerprint of your PGP
public key; we will have handouts with all of the key fingerprints of
the keys that people have mailed in.
o In turn, readers at the front of the room will recite people's keys;
as your key fingerprint is read, stand up, and at the end of reading
of your PGP key fingerprint, acknowledge that the fingerprint as read
was correct.
o Later that evening, or perhaps when you get home, you can sign the
keys corresponding to the fingerprints which you were able to verify
on the handout; note that it is advisable that you only sign keys of
people when you have personal knowledge that the person who stood up
during the reading of his/her fingerprint really is the person which
he/she claimed to be.
o Send the signed keys to the owners, and, optionally, to the PGP key
servers. Some poeple opt to NOT send the signed keys to the
keyservers, but rather choose to send them only to the e-mail address
on the key's userid, encrypted for that particular key. This tends to
ensures the validity of the e-mail address.
Note that you don't have to have a laptop with you; if you don't have
any locally trusted computing resources during the key signing party,
you can make notes on the handout, and on the strips of papers, and then
take these and sign the keys later.
Acknowledgement: The bulk of the text of this message was taken from the
messages usually sent by Ted Ts'o to announce IETF key signing parties.
-- Jeffrey T. Hutzelman (N3NHS) <jhutz+ at cmu.edu>
Sr. Research Systems Programmer
School of Computer Science - Research Computing Facility
Carnegie Mellon University - Pittsburgh, PA
_______________________________________________
IETF-Announce mailing list
IETF-Announce at ietf.org
https://www.ietf.org/mailman/listinfo/ietf-announce
esday, you will be able to fetch complete key ring
from any of the following locations with all of the keys that were
submitted:
/afs/grand.central.org/project/ietf-pgp/ietf72/ietf72.pgp
http://grand.central.org/dl/ietf-pgp/ietf72/ietf72.pgp
ftp://grand.central.org/pub/ietf-pgp/ietf72/ietf72.pgp
o At 16:10, come prepared with the PGP Key fingerprint of your PGP
public key; we will have handouts with all of the key fingerprints of
the keys that people have mailed in.
o In turn, readers at the front of the room will recite people's keys;
as your key fingerprint is read, stand up, and at the end of reading
of your PGP key fingerprint, acknowledge that the fingerprint as read
was correct.
o Later that evening, or perhaps when you get home, you can sign the
keys corresponding to the fingerprints which you were able to verify
on the handout; note that it is advisable that you only sign keys of
people when you have personal knowledge that the person who stood up
during the reading of his/her fingerprint really is the person which
he/she claimed to be.
o Send the signed keys to the owners, and, optionally, to the PGP key
servers. Some poeple opt to NOT send the signed keys to the
keyservers, but rather choose to send them only to the e-mail address
on the key's userid, encrypted for that particular key. This tends to
ensures the validity of the e-mail address.
Note that you don't have to have a laptop with you; if you don't have
any locally trusted computing resources during the key signing party,
you can make notes on the handout, and on the strips of papers, and then
take these and sign the keys later.
Acknowledgement: The bulk of the text of this message was taken from the
messages usually sent by Ted Ts'o to announce IETF key signing parties.
-- Jeffrey T. Hutzelman (N3NHS) <jhutz+ at cmu.edu>
Sr. Research Systems Programmer
School of Computer Science - Research Computing Facility
Carnegie Mellon University - Pittsburgh, PA
_______________________________________________
IETF-Announce mailing list
IETF-Announce at ietf.org
https://www.ietf.org/mailman/listinfo/ietf-announce