Re: pgp signing in van
Phillip Hallam-Baker <hallam@gmail.com> Fri, 06 September 2013 23:33 UTC
Return-Path: <hallam@gmail.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3FA1011E80E3 for <ietf@ietfa.amsl.com>; Fri, 6 Sep 2013 16:33:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.483
X-Spam-Level:
X-Spam-Status: No, score=-2.483 tagged_above=-999 required=5 tests=[AWL=0.116, BAYES_00=-2.599, HTML_MESSAGE=0.001, NO_RELAYS=-0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3lzMYHURtaVX for <ietf@ietfa.amsl.com>; Fri, 6 Sep 2013 16:33:32 -0700 (PDT)
Received: from mail-la0-x22a.google.com (mail-la0-x22a.google.com [IPv6:2a00:1450:4010:c03::22a]) by ietfa.amsl.com (Postfix) with ESMTP id 0DCD521F9FF6 for <ietf@ietf.org>; Fri, 6 Sep 2013 16:33:31 -0700 (PDT)
Received: by mail-la0-f42.google.com with SMTP id ep20so3356478lab.29 for <ietf@ietf.org>; Fri, 06 Sep 2013 16:33:31 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=SPuNsUF7q2US2MVh/wzwz1rS80Weqgz1/wnZpBwD2DI=; b=J/W+wvIFPcMTW8nhoKmDXmNVYKqP69ANWhllrNRjp47WwM2D0jqDSelePHJbwaNE/E XqLApgToy2wC/Rgkad0aHoraSVANVV7kN8soA7g2JS1qD3giWWYgq/nMQ15QRJEFQ7et bN9wjDJG0RHEm7Ym+a2+XiagtbolNYEthZEfsk4dbjrsAfYvD2FBKEq1gqp3+q98dan6 MbaCni0aqfLoqgPHc0S2JTHL//tDN8HntdW77Sb80lYgXtA72Kxc7yTq8445EAyvnajl dqLIjz+/RMrA3wv+PayDsfuYhLS5Y2dJYBSzkvY6U2BlU0E25KsoaBYygVZzIEWlNDP+ d/YQ==
MIME-Version: 1.0
X-Received: by 10.152.115.176 with SMTP id jp16mr4312172lab.17.1378510410956; Fri, 06 Sep 2013 16:33:30 -0700 (PDT)
Received: by 10.112.148.165 with HTTP; Fri, 6 Sep 2013 16:33:30 -0700 (PDT)
In-Reply-To: <522A5A45.7020208@isi.edu>
References: <m2zjrq22wp.wl%randy@psg.com> <2309.1378487864@sandelman.ca> <522A5A45.7020208@isi.edu>
Date: Fri, 06 Sep 2013 19:33:30 -0400
Message-ID: <CAMm+Lwg6PGBLHvXrsNMhF-9Z_fSEo-+CWO-gdJedxk-Za62OVw@mail.gmail.com>
Subject: Re: pgp signing in van
From: Phillip Hallam-Baker <hallam@gmail.com>
To: Joe Touch <touch@isi.edu>
Content-Type: multipart/alternative; boundary="001a11c350965d483004e5bf77dc"
Cc: Michael Richardson <mcr@sandelman.ca>, IETF Disgust <ietf@ietf.org>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 06 Sep 2013 23:33:33 -0000
On Fri, Sep 6, 2013 at 6:42 PM, Joe Touch <touch@isi.edu> wrote: > > > On 9/6/2013 10:17 AM, Michael Richardson wrote: > >> >> I will be happy to participate in a pgp signing party. >> Organized or not. >> >> I suggest that an appropriate venue is during the last 15 minutes of the >> newcomer welcome and the first 15 minutes of the welcome reception. >> >> Because: >> 1) the WG-chairs and IESG will all be there, and a web of trust >> still needs some significant good connectivity, and we already >> know each other rather well, without needing "ID" >> (I am not interested myself in verifying anyone's NSA^WGovernment >> identity. I don't trust that Certification Authority...) >> >> 2) getting newbies on-board, meeting them well enough to sign >> their key seems like a good thing. >> > > And whose key would you sign? Anyone who showed up with a form of ID? > > I've noted elsewhere that the current typical key-signing party methods > are very weak. You should sign only the keys of those who you know well > enough to claim you can attest to their identity. > > If that's the case, how will this get newbies on-board except to invite > them to have keys whose signatures aren't relevant, and to devalue the > trust in WG-chairs and IESG members? > > Joe > I can write a key ceremony spec. I have done that before. Almost everyone arriving in Vancouver will have a passport in any case. The protocol will probably be something like provide your key etc data in advance, print something out and present that plus your ID document in the ceremony. -- Website: http://hallambaker.com/
- Re: pgp signing in van Scott Kitterman
- Re: pgp signing in van Scott Kitterman
- Re: pgp signing in van Melinda Shore
- pgp signing in van Randy Bush
- Re: pgp signing in van Phillip Hallam-Baker
- Re: pgp signing in van Dave Crocker
- Re: pgp signing in van Scott Kitterman
- RE: pgp signing in van l.wood
- Re: pgp signing in van Russ Housley
- Re: pgp signing in van Michael Richardson
- Re: pgp signing in van Peter Saint-Andre
- Re: pgp signing in van Phillip Hallam-Baker
- Re: pgp signing in van Ted Lemon
- Re: pgp signing in van Joe Touch
- Re: pgp signing in van Phillip Hallam-Baker
- Re: pgp signing in van Phillip Hallam-Baker
- Re: pgp signing in van Ted Lemon
- Re: pgp signing in van Melinda Shore
- Re: pgp signing in van Ted Lemon
- Re: pgp signing in van Melinda Shore
- Re: pgp signing in van Joe Touch
- Re: pgp signing in van Scott Kitterman
- Re: pgp signing in van Phillip Hallam-Baker
- Re: pgp signing in van Ted Lemon
- Re: pgp signing in van Scott Brim
- Re: pgp signing in van Ted Lemon
- Re: pgp signing in van Melinda Shore
- Re: pgp signing in van Ted Lemon
- Re: pgp signing in van Melinda Shore
- Re: pgp signing in van Ted Lemon
- Re: pgp signing in van Pete Resnick
- Re: pgp signing in van Theodore Ts'o
- Re: pgp signing in van Hector Santos
- Re: pgp signing in van Phillip Hallam-Baker
- Re: pgp signing in van Hector Santos
- Re: pgp signing in van John C Klensin
- Re: pgp signing in van Michael Richardson
- Re: pgp signing in van Michael Richardson
- Re: pgp signing in van Ted Lemon
- Re: pgp signing in van Peter Saint-Andre
- Re: pgp signing in van Hector Santos
- Re: pgp signing in van Peter Saint-Andre
- Re: pgp signing in van Måns Nilsson
- RE: pgp signing in van l.wood
- Re: pgp signing in van Anshuman Pratap Chaudhary
- Re: pgp signing in van Måns Nilsson
- Re: pgp signing in van Brian Trammell
- Re: pgp signing in van Andrew Sullivan
- Re: pgp signing in van Cyrus Daboo
- Re: pgp signing in van Peter Saint-Andre
- Re: pgp signing in van Michael Richardson
- Re: pgp signing in van John Levine
- Re: pgp signing in van David Conrad
- Re: pgp signing in van Ted Lemon
- Re: pgp signing in van Peter Saint-Andre
- Re: pgp signing in van Richard Barnes
- Re: pgp signing in van Scott Brim
- Re: [IETF] Re: pgp signing in van Warren Kumari
- What real users think [was: Re: pgp signing in va… Brian E Carpenter
- Re: pgp signing in van Dan York
- Re: What real users think [was: Re: pgp signing i… Dave Crocker
- Re: pgp signing in van Ted Lemon
- Re: What real users think [was: Re: pgp signing i… Steve Crocker
- Re: What real users think [was: Re: pgp signing i… Ted Lemon
- Re: What real users think [was: Re: pgp signing i… Dave Crocker
- Re: What real users think [was: Re: pgp signing i… Hector Santos
- Re: What real users think [was: Re: pgp signing i… Steve Crocker
- Re: pgp signing in van Ted Lemon
- Re: What real users think [was: Re: pgp signing i… Brian E Carpenter
- Re: What real users think [was: Re: pgp signing i… John C Klensin
- Re: What real users think [was: Re: pgp signing i… Ted Lemon
- Re: pgp signing in van David Morris
- Re: What real users think [was: Re: pgp signing i… SM
- Re: What real users think [was: Re: pgp signing i… Dave Crocker
- Re: pgp signing in van Ted Lemon
- Re: What real users think [was: Re: pgp signing i… Ted Lemon
- Re: What real users think [was: Re: pgp signing i… Ted Lemon
- Re: not really pgp signing in van John Levine
- Re: not really pgp signing in van Ted Lemon
- Re: What real users think [was: Re: pgp signing i… John R. Levine
- Re: pgp signing in van Arturo Servin
- Re: not really pgp signing in van Scott Kitterman
- Re: What real users think [was: Re: pgp signing i… Phillip Hallam-Baker
- Re: not really pgp signing in van John Levine
- Re: What real users think [was: Re: pgp signing i… John Levine
- Re: not really pgp signing in van Ted Lemon
- Re: not really pgp signing in van John R Levine
- Re: not really pgp signing in van Ted Lemon
- Re: not really pgp signing in van John R Levine
- Re: What real users think [was: Re: pgp signing i… Fernando Gont
- Re: pgp signing in van Fernando Gont
- Re: pgp signing in van Ted Lemon
- Re: not really pgp signing in van Brian Trammell
- Re: pgp signing in van t.p.
- Re: not really pgp signing in van Måns Nilsson
- Re: pgp signing in van Ted Lemon
- the evil of html was Re: pgp signing in van t.p.
- Re: not really pgp signing in van Phillip Hallam-Baker
- Re: pgp signing in van Paul Wouters
- Re: not really pgp signing in van Ted Lemon
- Re: not really pgp signing in van Phillip Hallam-Baker
- Re: not really pgp signing in van Ted Lemon
- Re: not really pgp signing in van Martin Thomson
- Re: not really pgp signing in van Phillip Hallam-Baker
- Re: not really pgp signing in van John R Levine
- Re: not really pgp signing in van manning bill
- Re: not really pgp signing in van Ted Lemon
- Re: not really pgp signing in van Theodore Ts'o
- Re: not really pgp signing in van Phillip Hallam-Baker
- Re: not really pgp signing in van Ted Lemon
- Re: not really pgp signing in van Yoav Nir
- was: not really pgp signing in van SM
- Re: was: not really pgp signing in van Phillip Hallam-Baker