Dr. Jan Philip Bernius

🔑 PGP public key

I use the following public key for encrypted email communication and git commit signing:

pub   ed25519/0x09F1850D58C7ABD4 2021-03-22 [C] [expires: 2025-12-31]
      Key fingerprint = 1BF4 0D68 8714 93F1 04AC  3387 09F1 850D 58C7 ABD4
uid                             Jan Philip Bernius <janphilip@bernius.net>
sub   cv25519/0x2B5AEA095D0920E3 2021-03-22 [E] [expires: 2023-12-31]
sub   ed25519/0xC1E164F61967BFDE 2021-03-22 [S] [expires: 2023-12-31]

Please retreive the public key used the Web Key Directory (WDK).
A minimal version of the public key without signatures is attached at the end of this page. The full public key with signatures can be downloaded here.

I sign other keys at my discretion. A detailed key signing policy will be published at this page in the future.

Key signing policy

This document outlines the semantics of how I sign other people’s keys.

Signature levels

RFC 4880 outlines four types of signatures for certification of keys. My policy for selected an appropriate signature type are roughly based on the ideas oudlined in the RFC:

Level 0x10 (Generic certification)

I will issue this type of signature for keys that represent a group or an organization.

Level 0x11 (Persona certification)

I will not issue signautres of this type, as I do not sign keys without verification.

Level 0x12 (Casual certification)

I will issue this type of signature after verifying the keyholders identity against a government-issued photo ID. I accept passports as well as national identity cards from the EU/EEA (especially if issued according to Regulation (EU) 2019/1157). I can only accept non-german ID cards if I have reasonable time to familiarize myself with the security features in advance. This verification is typically done in a face-to-face meeting.

Level 0x13 (Positive certification)

I will issue this type of signaure to people I personally know and have interacted with for a sustained period of time. This includes (but is not limited to) family, frineds, colleages, fellow students, etc. I will require verification against a government-issued photo ID on my discretion.

Public key

-----BEGIN PGP PUBLIC KEY BLOCK-----
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=Gx3M
-----END PGP PUBLIC KEY BLOCK-----

Acknowledgements

This policy is inspired by other policies of other people I have found in the web:

1. Benjamin Esham
2. https://sethwilliamson.com/pgp/