🔑 PGP public key
I use the following public key for encrypted email communication and git commit signing:
pub ed25519/0x09F1850D58C7ABD4 2021-03-22 [C] [expires: 2028-12-31]
Key fingerprint = 1BF4 0D68 8714 93F1 04AC 3387 09F1 850D 58C7 ABD4
uid Jan Philip Bernius <janphilip@bernius.net>
sub cv25519/0x2B5AEA095D0920E3 2021-03-22 [E] [expires: 2024-12-31]
sub ed25519/0xC1E164F61967BFDE 2021-03-22 [S] [expires: 2024-12-31]
Please retreive the public key used the Web Key Directory (WDK).
A minimal version of the public key without signatures is attached at the end of this page. The full public key with signatures can be downloaded here.
I sign other keys at my discretion. A detailed key signing policy will be published at this page in the future.
Key signing policy
This document outlines the semantics of how I sign other people’s keys.
Signature levels
RFC 4880 outlines four types of signatures for certification of keys.
My policy for selected an appropriate signature type are roughly based on the ideas oudlined in the RFC:
- Level
0x10(Generic certification) - I will issue this type of signature for keys that represent a group or an organization.
- Level
0x11(Persona certification) - I will not issue signautres of this type, as I do not sign keys without verification.
- Level
0x12(Casual certification) - I will issue this type of signature after verifying the keyholder’s identity against a government-issued photo ID. I accept passports as well as national identity cards from the EU/EEA (especially if issued according to Regulation (EU) 2019/1157). I can only accept non-german ID cards if I have reasonable time to familiarize myself with the security features in advance. This verification is typically done in a face-to-face meeting.
- Level
0x13(Positive certification) - I will issue this type of signaure to people I personally know and have interacted with for a sustained period of time. This includes (but is not limited to) family, friends, colleagues, etc. I will require verification against a government-issued photo ID on my discretion.
Public key
-----BEGIN PGP PUBLIC KEY BLOCK----- mDMEYFh0rxYJKwYBBAHaRw8BAQdA5+RPKnSQSbp5vd05vs5YcnaqgW0KBT0X1oMf ZaNf+wO0KkphbiBQaGlsaXAgQmVybml1cyA8amFucGhpbGlwQGJlcm5pdXMubmV0 PoiWBBMWCAA+BQsJCAcCBhUKCQgLAgQWAgMBAh4BAheAAhsBFiEEG/QNaIcUk/EE rDOHCfGFDVjHq9QFAmYz7NQFCQ6h9CUACgkQCfGFDVjHq9RuBgD8C4E/Lx7+IMCP ce/bmArUMB4Ql2hp8WpFkKzlkNrqhmwA/RFUUpGihgVaItrAvHYWlxIXBLRENIUI 0ucbA36BkSMCuDgEYFh0rxIKKwYBBAGXVQEFAQEHQFA59FupyyrzSlln+wXJPx4A +dljhn3kOxnY/bTeGdkYAwEIB4h+BBgWCAAmAhsMFiEEG/QNaIcUk/EErDOHCfGF DVjHq9QFAmYz7TcFCQcb1QgACgkQCfGFDVjHq9S44QD+PiTvCuEDZfR3vJjdB9c7 rrjx0VxPa9+EfTGRf7Q7D6YBAN9N2sUgLTQAQXNAtm0+W7cGCzlgQ8SRm5eLVamz jUkMuDMEYFh30xYJKwYBBAHaRw8BAQdARsaB2d3LtITVD92egPLEQnIS3OLWHouQ 2ZO+sFkkZ9SI9QQYFggAJgIbAhYhBBv0DWiHFJPxBKwzhwnxhQ1Yx6vUBQJmM+1k BQkHG9IRAIF2IAQZFggAHRYhBMiF7eXAuz4OVEBP1sHhZPYZZ7/eBQJgWHfTAAoJ EMHhZPYZZ7/e/V4A/A95i1a7DLjrqxMLXeE7b3ua3hi+FBmerm2bXf4FoSXUAQCg kh4PbxiA4gyDv8sP1U1Gf8MCVvNjSzIZE5ZTrNexAAkQCfGFDVjHq9SqlQD+LL7N cP3XrAOnFeP5G96a91hij/Hj31qu8tXn0cVia/kA/0k3yS5m5tZNM3CaHoLFmThC hte2TzabQDXzgiB75asC =wdQ6 -----END PGP PUBLIC KEY BLOCK-----
Acknowledgements
This policy is inspired by other policies of other people I have found in the web: