docs/keysigning-help: keysigning-help.tex annotate

annotate keysigning-help.tex @ 2:1d91fadb416f

fixed typo

author	meillo@marmaro.de
date	Wed, 18 Feb 2009 17:33:03 +0100
parents	8d616aba351e
children	aa9f4b501eaf

rev	line source
0 8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	1 % Supplemental Keysigning Help
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	2 %
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	3 % markus schnalke <meillo@marmaro.de>
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	4 %
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	5 % since 2009-02-17
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	6
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	7 \documentclass[a4paper,twocolumn]{article}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	8
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	9 \usepackage{paper}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	10
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	11 \usepackage{url}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	12 \usepackage{graphicx}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	13 \usepackage{verbatim}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	14
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	15
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	16 \begin{document}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	17
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	18 \date{}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	19 \title{\textbf{\huge Supplemental Keysigning Help}}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	20 \author{markus schnalke\\meillo@marmaro.de}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	21 \maketitle
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	22
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	23 \copyright{
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	24 Created for some people of the LUG Ulm \cite{lugu}, 2009-02-18\\
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	25 This document is available on my website \url{http://marmaro.de/docs}\,.
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	26 }
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	27
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	28
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	29 \abstract{
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	30 Methods to organize keysigning events are available in large numbers. They usually describe only what needs be done in which order, and this is exactly what they should do.
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	31
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	32 This document is a supplemental help to one of the methods by describing concrete ways how to actually do some of the tasks. It suggest tools and shows how to use them.
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	33 }
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	34
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	35
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	36
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	37 \section{Introduction}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	38
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	39 This document tries to help people in organizing a keysiging event. It should be seen as concrete suggestions for how to do things that are already described by the keysigning method in general. The method defines how to organize the keysigning, this document makes concrete suggestions \emph{how} to do things. This document also shows how to generate WOT graphs.
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	40
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	41
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	42
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	43
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	44 \section{Keysigning method}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	45
2 1d91fadb416f fixed typo meillo@marmaro.de parents: 0 diff changeset	46 The keysigning method that is focused here is Zimmermann and Sassaman's method \cite{zimmermann}. It is easy to use and scales well for any amount of people.
0 8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	47
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	48 One should become familiar with this method and follow it when organizing a keysigning event. This document provides technical help with some selected tasks.
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	49
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	50
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	51
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	52
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	53 \section{Key management}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	54
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	55 When you invite people to the keysigning event you will receive their public key(s). To manage the keys it is recommended to add them to a new keyring:
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	56
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	57 {\tt\small
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	58 \begin{verbatim}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	59 $ gpg --no-default-keyring \
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	60 --keyring /path/to/keyring.gpg \
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	61 --import some-public-key.asc
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	62 \end{verbatim}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	63 }
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	64
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	65 It is also possible to directly fetch the keys from a keyserver, but this is not preferred. It is better to receive the keys directly from the owners.
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	66
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	67 {\tt\small
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	68 \begin{verbatim}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	69 $ gpg --no-default-keyring \
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	70 --keyring /path/to/keyring.gpg \
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	71 --keyserver subkeys.pgp.net \
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	72 --recv-key 0xDEADBEEF
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	73 \end{verbatim}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	74 }
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	75
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	76
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	77
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	78
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	79 \section{Participant list}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	80
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	81 You have to generate a list that contains the public keys of all participants. A script to do this automatically with nice formating is available \cite{keylist}. The script is not perfect, but sufficient.
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	82
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	83 {\tt\small
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	84 \begin{verbatim}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	85 $ keylist.sh /path/to/keyring.gpg header.txt \
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	86 howto.txt checksums.txt
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	87 \end{verbatim}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	88 }
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	89
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	90 The script generates a public key list from all keys in the keyring (first argument). This list can get prepended by the contents of text files (all further arguments).
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	91
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	92 A general header is demanded by good style. Descriptions of what the participants need to do are highly recommended in order to support unexperienced participants. Fields to insert the checksums should be provided anyway. Examples for the here included files can be found at \cite{keylist}.
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	93
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	94 %Figure \ref{fig:keylist} shows a sample participant list.
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	95
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	96 \begin{figure}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	97 {\tt\tiny
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	98 \verbatiminput{keylist-sample.txt}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	99 }
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	100 \label{fig:keylist}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	101 \caption{A sample participant list}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	102 \end{figure}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	103
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	104
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	105
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	106
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	107 \section{WOT graphs}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	108
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	109 The change of the Web of Trust (short: WOT) does directly show the gain of a keysigning event. The more interweaved and the shorter connections between individuals are, the better is the trust among that group of people.
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	110
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	111 Providing WOT graphs is a nice act of a keysigning organizer. However, it is in any case optional and can be done afterwards, too.
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	112
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	113 Two programs are required to generate the graphs: \texttt{sig2dot} \cite{sig2dot} and \texttt{neato} from \texttt{graphviz} \cite{graphviz}.
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	114
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	115 To generate a graph that depicts the WOT, use the following command:
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	116
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	117 {\tt\small
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	118 \begin{verbatim}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	119 $ gpg --no-default-keyring \
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	120 --keyring /path/to/keyring.gpg \
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	121 --list-sigs \
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	122 \| sig2dot -d YYYY-MM-DD \
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	123 \| neato -Tpng > wot.png
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	124 \end{verbatim}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	125 }
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	126
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	127 The date (`\texttt{YYYY-MM-DD}') must be substituted, of course. The generated image shows the WOT at the given date.
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	128
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	129 To generate graphs of the WOT after the event, one must update the keyring first:
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	130
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	131 {\tt\small
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	132 \begin{verbatim}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	133 $ gpg --no-default-keyring \
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	134 --keyring /path/to/keyring.gpg \
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	135 --keyserver subkeys.pgp.net \
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	136 --refresh-keys
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	137 \end{verbatim}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	138 }
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	139
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	140 New images can be created the same way as described above, only the date needs to be changed.
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	141
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	142 (Notice that only signatures that were uploaded to a keyserver will be included.)
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	143
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	144 %Figure \ref{fig:wot-graphs} shows sample WOT graphs before and after a keysigning event.
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	145
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	146 \begin{figure}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	147 \includegraphics[scale=0.45]{wot-before.ps}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	148 \hfill
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	149 \includegraphics[scale=0.45]{wot-after.ps}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	150 \caption{Sample graphs which show the WOT before and after a keysigning event}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	151 \label{fig:wot-graphs}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	152 \end{figure}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	153
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	154
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	155
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	156 \section{A hint for participants}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	157
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	158 Receiving keys, signing them, and sending the signatures back to the key owners can be a wasteful job, especially if may people took part in a keysigning event.
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	159
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	160 The nice tool \texttt{caff} \cite{signing-party} is a great helper. It automates the whole process, from key retrival, to signing, to sending the signatures. (An MTA is required to send signatures.)
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	161
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	162
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	163
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	164 \section{Acknowledgments}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	165
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	166 This document bases heavily on how Fabian Fingerle \cite{fabianfingerle} organizes keysigning events. I thank him for being a great inspiration.
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	167
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	168
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	169
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	170 {\footnotesize
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	171 \bibliographystyle{plain}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	172 \bibliography{references}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	173 }
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	174
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	175
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	176
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	177 \end{document}
8d616aba351e the already finished paper meillo@marmaro.de parents: diff changeset	178

Mercurial > docs > keysigning-help

annotate keysigning-help.tex @ 2:1d91fadb416f