SVLUG Keysigning Party
SVLUG December Meeting
December 7, 2005
The meeting is from 7pm - 9pm.
The keysigning will be at the end of the meeting
Directions and location are available at the SVLUG website.
What's a key-signing party?
A key-signing party is where PGP users get together to verify
the match between a PGP key and the identity of the person behind it.
They then sign each others keys, thus leading to an expansion of the PGP
web of trust.
What do I need to do to prepare for this party?
You need to do the following before the party:
- If you don't have one already, generate a PGP key.
There are quite a few choices to make when generating a PGP key, so choose wisely.
Many choices cannot be changed later.
For information on how to generate a PGP key using GnuPG, here is a link to the appropriate section of the Gnu Privacy Handbook.
- Submit your key to the keyserver running at subkeys.pgp.net.
gpg --keyserver subkeys.pgp.net --send-keys (your hex ID here)
- Email your key ID, key type, fingerprint, and key size to me.
Ideally I would like the output of
gpg --list-keys --fingerprint (your hex ID here)
PLEASE put the word PGP in the subject.
mail it to Andrew Chant (firstname.lastname@example.org).
Deadline: 5pm December 7th
- You will receive an email response signed by me (355144CE)
Assuming I got your key and all is well.
Additionally, your key fingerprint will be listed
I have chosen to only post the key fingerprints to avoid spam problems, though do note that
email addresses are easily harvested through the pgp keyservers.
- Come to the December 7th SVlug meeting!
DO NOT FORGET TO BRING:
- Method for proving your identity
Some people require passports, or other gov't issued photo ID.
Others are more careful :)
- A paper copy of your key ID, key type, key fingerprint (in hex), and key size
- Pen or Pencil
- You do not need a computer. It will not help.
How will we do the keysigning?
Never fear! Here's how to complete the keysigning.
- All of the participants in the keysigning will pick up the copy of the key list that I will provide.
- All participants in the keysigning will get in a line, in the order that their key is listed in the file.
- I will read aloud the key fingerprints in order. The owner of the key should say "CORRECT" or "SOMETHING IS ROTTEN IN THE STATE OF DENMARK!" when their key is read aloud. Upon hearing "correct", everyone will check the "Fingerprint correct" box for that key.
- The head of the line will start down the line verifying identities. If they are satisfied that the identity of each keyholder is correct, they will check the "Identity verified" box for that key.
- If there is noone ahead of you in line, you will start down the line.
- As you reach the end of the line, add yourself to the end so that people coming after you will be able to verify your identity.
- When the line is in the same order as it was to start, we are done!
Put your paper in a safe place, then go eat and socialize at the post-SVLUG meeting gathering.
When you finally reach a computer you TRUST: