KSP Easterhegg 2016

The following website addresses all people who (i) attend the Easterhegg 2016 (EH16), (ii) possess a PGP key, and (iii) want to participate in a key-signing party where all participants sign each others’ key according to the Zimmermann–Sassaman key-signing protocol.

When: Sun, Mar 27, 22:45
Where: Room "Workshops und Party", EH16, ARGE Kultur, Salzburg
Language: German/English

 

Of course, you are welcome to also exchange all kind of crypto information, like fingerprints of OTR keys or various phone texting systems or whatever.

If you missed the deadline for key submission, you can still participate in the key signing in the traditional way. Bring print-outs of your key information.

Instructions

It is very important that everyone precisely follows these instructions.

  1. Before the party.

    • Until Sat, Mar 26, 16:00 CET:

      Submit your key to the keyserver1 by calling2

          gpg --keyserver ksp-eh2016.sthu.org --send-keys KEYID

      with your KEYID. You can check whether uploading worked by inspecting ksp-eh2016.txt. It is regenerated when a key is submitted and should contain your key.3

      If you want to create a new key then now is a good time.

    • I will compile a text file with all submitted keys and send it to you.

      You need to print the file and follow the instructions on it.

      At the party, I will announce the correct checksum. Everyone needs to cross-check the checksum such that we can be sure that we all have exactly the same file printed. You should also check that the fingerprint of your key on the list is correct.

    • If you could not submit your key until the deadline, you can still participate in the key signing, but not in the Zimmermann–Sassaman protocol. Just bring a sufficient number of printouts of your fingerprints with you, e.g., by printing the output of

          gpg --fingerprint KEYID

      All participants can exchange fingerprints and verify IDs in the traditional way after we executed the protocol. In fact, it also makes sense for people that do participate in the Zimmermann–Sassaman protocol to bring printouts of their fingerprints with them.

  2. At the event.

    • You need to bring your (!) printed list and a pen. You must not copy the list of someone else.
    • You need to bring a document of identification4 (e.g., passport, driving license) that contains a photo of you.
    • I will moderate the procedure by which we will efficiently check each others’ ID document and the validity of the fingerprints.

  3. After the event.

    • Sign the keys of those owners where you checked the identity and send them their signed keys back by mail.

  1. KSP Keyserver v0.1 is running here, an add-only keyserver. 

  2. Starting with gnupg-2.1, the keyserver communication is done by dirmngr. As a result you have to add this keyserver to your dirmngr.conf file. 

  3. Do not forget to set an expiry date and to print and store the revocation certificate. 

  4. Dt.: Lichtbildausweis certificate, and use a key length of at least 2048 bits.