Keysigning Party @ Japan Debian Mini Conf 2005
Start: Sat, 2005-10-29 16:00-17:45Location: At Japan Debian Mini Conf 2005, 6F E meeting room, Business Innovation Center Osaka, Japan
What is/Why keysigning?
A key signing party is a get-together of people who have PGP (GPG) keys for the purpose of allowing those people to sign each other's keys. Key signing parties allow the web of trust to be extended to a great degree. Keysigning parties also serve as great opportunities to meet and talk face-to-face.
Please read section One of the GnuPG Keysigning Party HOWTO (note: the party will be done slightly differently, so the other chapters do not apply completely).
How the Keysigning Will Happen
The Party will be conducted using Len Sassaman's Efficient Group Key Signing Method which is a protocol to do keysignings in a way that is faster than the way many people may be familiar with:
If you intend to participate please send your ASCII armored public key to ksp-jdmc2005[at]kmuto.jp by Sunday, October 23rd, 2005. Attach the keys as a file, and name that file as your email address (multiple keys per file/armor are just fine). Please do not sign or encrypt your email. You will receive a confirmation message after coordinator acknowledge your key.
Registration is closed. If you'd like to participate from this time, please bring printed your E-mail address and fingerprint (you can get by using "gpg --fingerprint Your_ID") to give all participants. We believe the number of participants is at least 30. Don't miss to bring your ID also. You can find print shop(Kinko's Japan) in near place. Nearest Kinko's(Sorry It is Japanse Page)
- By Wednesday, October 26th, you will be able to fetch both the complete keyring with all the keys that were submitted along with a text file that has the fingerprint of each key on the ring. (ksp-jdmc2005.txt)
- At home, verify that the fingerprint of your key in ksp-jdmc2005.txt is correct. Also compute the MD5 hash of ksp-jdmc2005.txt. One way to do this is with md5sum invoked as follows:
md5sum ksp-jdmc2005.txt
or
gpg --print-md md5 ksp-jdmc2005.txtYou can calculate the SHA1 hash too with sha1sum or gpg --print-md sha1.
- At this party, come with the hash you computed and a hard copy of ksp-jdmc2005.txt.
- A reader at the front of the room will recite the MD5 hash of ksp-jdmc2005.txt. Verify that the hash recited matches what you computed. This guarantees that all participants are working from the same list of keys. The reader will also recite the SHA1 hash.
- Next, the reader will ask if everybody has the same MD5 hash of ksp-jdmc2005.txt. If that is the case, sign each page of your hardcopy and mark the key verified on it.
- The next step is to verify each participant's identity by checking the participant's passport or similar form of ID.
At official Debconf, the participants
formed a closed line in numerical order by the number assigned
to the participants on the hard copy, and after each pair of people
facing each other verified their ID documents, a segment of the
line shifted to the left one position. (This method works but spends
a lot of time. So coordinator is finding a smarter way.)
- Later that evening, or perhaps when you get home, you can sign the keys that you were able to verify belong to the individual listed on the key and whose fingerprint match the fingerprint on the hard copy. After you have signed a key, send it to its owner along with your signature. Downloads:
Summary: What to bring with you
- A printout of ksp-jdmc2005.txt; verify that your fingerprint is correct.
- The MD5 Hash you made of ksp-jdmc2005.txt so that we can ensure we are all working with the same copy.
- Some form of government issued ID (passport or similar).
- If this is your first keysigning, a copy of this email and linked documents might be useful.
Are you interesting about CAcert.org also?
If you've already joining CAcert.org, the certification publish
structure for SSL using "Web of Trust" without any costs, this keysign party is a great opportunity to get assure points also.
See details about CAcert.org from official site (http://www.cacert.org/) and Kenshi's wiki page (http://kmuto.jp/open.cgi?cacert).
To get assurance, you need to create an account of CAcert.org and print some copies (3 or 4) of your WoT form from "CAcert Web of Trust" -> "A4 - WoT Form" menu of CAcert.org. Then fill "Applicant Statement"
of your copies. It's kindly for assurers that you fill "Photo ID
Shown" and "Location of Face-to-face Meeting" entries.
At keysign party, please bring your WoT forms and government issued ID.
After party is finished, assurers will receive your WoT form and give appropriate points to you. Contact: Yukiharu YABUKI.
E-mail: yabuki [at] good-day.co.jp
Copyright ©2005 Japan Debian Mini Conf executive committee All rights reserved.