Dr. Jan Philip Bernius

🔑 PGP public key

I use the following public key for encrypted email communication and git commit signing:

pub   ed25519/0x09F1850D58C7ABD4 2021-03-22 [C] [expires: 2028-12-31]
      Key fingerprint = 1BF4 0D68 8714 93F1 04AC  3387 09F1 850D 58C7 ABD4
uid                             Jan Philip Bernius <janphilip@bernius.net>
sub   cv25519/0x2B5AEA095D0920E3 2021-03-22 [E] [expires: 2024-12-31]
sub   ed25519/0xC1E164F61967BFDE 2021-03-22 [S] [expires: 2024-12-31]

Please retreive the public key used the Web Key Directory (WDK).
A minimal version of the public key without signatures is attached at the end of this page. The full public key with signatures can be downloaded here.

I sign other keys at my discretion. A detailed key signing policy will be published at this page in the future.

Key signing policy

This document outlines the semantics of how I sign other people’s keys.

Signature levels

RFC 4880 outlines four types of signatures for certification of keys. My policy for selected an appropriate signature type are roughly based on the ideas oudlined in the RFC:

Level 0x10 (Generic certification)
I will issue this type of signature for keys that represent a group or an organization.
Level 0x11 (Persona certification)
I will not issue signautres of this type, as I do not sign keys without verification.
Level 0x12 (Casual certification)
I will issue this type of signature after verifying the keyholder’s identity against a government-issued photo ID. I accept passports as well as national identity cards from the EU/EEA (especially if issued according to Regulation (EU) 2019/1157). I can only accept non-german ID cards if I have reasonable time to familiarize myself with the security features in advance. This verification is typically done in a face-to-face meeting.
Level 0x13 (Positive certification)
I will issue this type of signaure to people I personally know and have interacted with for a sustained period of time. This includes (but is not limited to) family, friends, colleagues, etc. I will require verification against a government-issued photo ID on my discretion.

Public key

-----BEGIN PGP PUBLIC KEY BLOCK-----
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=wdQ6
-----END PGP PUBLIC KEY BLOCK-----

Acknowledgements

This policy is inspired by other policies of other people I have found in the web:

  1. Benjamin Esham
  2. https://sethwilliamson.com/pgp/