Could we do smime as well?
If we had a list of smime cert fingerprints it can be used for trust
reinforcement
The issue is that smime email clients are more common so I would
rather teach the smime doggie pgp like tricks than vice versa
Sent from my difference engine
On Sep 6, 2013, at 1:20 PM, Michael Richardson <mcr(_at_)sandelman(_dot_)ca>
wrote:
I will be happy to participate in a pgp signing party.
Organized or not.
I suggest that an appropriate venue is during the last 15 minutes of the
newcomer welcome and the first 15 minutes of the welcome reception.
Because:
1) the WG-chairs and IESG will all be there, and a web of trust
still needs some significant good connectivity, and we already
know each other rather well, without needing "ID"
(I am not interested myself in verifying anyone's NSA^WGovernment
identity. I don't trust that Certification Authority...)
2) getting newbies on-board, meeting them well enough to sign
their key seems like a good thing.
But, Randy, of what use is my signing your key, if you never use it?
I would happy to sign a key for a network personality who posts
signed message regularly to @ietf.org mailing lists. I would simply give
them a nonce to sign. (For awhile, I was convince
sm(_at_)resistor(_dot_)net,
whose full name I did not know until Orlando, was a gestalt network
identity...)
My key is still available via finger mcr(_at_)sandelman(_dot_)ca, and
root(_at_)sandelman(_dot_)ca
is offline (I used to have a 286 in the corner), and has web of trust
signatures going back to 1994.
pub 1024R/B0C8713D 1994-11-08 <- it's a bit weak these days.
pub 2208R/FCA16F90 2006-10-10 <- new "modern" offline key.
We just put our GPG fingerprint into the MEMO part of a vcard,
http://zxing.appspot.com/generator/ or using qrencode
http://fukuchi.org/works/qrencode/index.html.en (in debian/ubuntu)
I suggest that perhaps this might be a useful way to exchange info:
http://www.sandelman.ca/tmp/IMG_20130906_125920.jpg
one would take a picture of the other person with their QR code
and fingerprint. It also just works to remember the names of new people!
(Sadly, I can't scan the QR code with my phone from the photo displayed
on my screen, but I can read the fingerprint)
Patrik has a blog post: http://stupid.domain.name/node/1323
that does exactly that.
ps: nice address book entry for ietf@ietf.
--
] Never tell me the odds! | ipv6 mesh networks [
] Michael Richardson, Sandelman Software Works | network architect [
] mcr(_at_)sandelman(_dot_)ca http://www.sandelman.ca/ | ruby
on rails [