🔑 PGP public key
I use the following public key for encrypted email communication and git commit signing:
pub ed25519/0x09F1850D58C7ABD4 2021-03-22 [C] [expires: 2025-12-31] Key fingerprint = 1BF4 0D68 8714 93F1 04AC 3387 09F1 850D 58C7 ABD4 uid Jan Philip Bernius <email@example.com> sub cv25519/0x2B5AEA095D0920E3 2021-03-22 [E] [expires: 2023-12-31] sub ed25519/0xC1E164F61967BFDE 2021-03-22 [S] [expires: 2023-12-31]
Please retreive the public key used the Web Key Directory (WDK).
A minimal version of the public key without signatures is attached at the end of this page. The full public key with signatures can be downloaded here.
I sign other keys at my discretion. A detailed key signing policy will be published at this page in the future.
Key signing policy
This document outlines the semantics of how I sign other people’s keys.
RFC 4880 outlines four types of signatures for certification of keys.
My policy for selected an appropriate signature type are roughly based on the ideas oudlined in the RFC:
- I will issue this type of signature for keys that represent a group or an organization.
- I will not issue signautres of this type, as I do not sign keys without verification.
- I will issue this type of signature after verifying the keyholders identity against a government-issued photo ID. I accept passports as well as national identity cards from the EU/EEA (especially if issued according to Regulation (EU) 2019/1157). I can only accept non-german ID cards if I have reasonable time to familiarize myself with the security features in advance. This verification is typically done in a face-to-face meeting.
- I will issue this type of signaure to people I personally know and have interacted with for a sustained period of time. This includes (but is not limited to) family, frineds, colleages, fellow students, etc. I will require verification against a government-issued photo ID on my discretion.
-----BEGIN PGP PUBLIC KEY BLOCK----- mDMEYFh0rxYJKwYBBAHaRw8BAQdA5+RPKnSQSbp5vd05vs5YcnaqgW0KBT0X1oMf ZaNf+wO0KkphbiBQaGlsaXAgQmVybml1cyA8amFucGhpbGlwQGJlcm5pdXMubmV0 PoiWBBMWCAA+BQsJCAcCBhUKCQgLAgQWAgMBAh4BAheAAhsBFiEEG/QNaIcUk/EE rDOHCfGFDVjHq9QFAmOt/JMFCQj9FuQACgkQCfGFDVjHq9QAvwEAwV5SBj0yQOj3 y/Z7H+45aCUypnvUuRHClBz0AJrpx6UA/1fVZnl7gZTuVrX1VGLJol0FxYBvE1wA v6mAH3/CDhoMuDgEYFh0rxIKKwYBBAGXVQEFAQEHQFA59FupyyrzSlln+wXJPx4A +dljhn3kOxnY/bTeGdkYAwEIB4h+BBgWCAAmAhsMFiEEG/QNaIcUk/EErDOHCfGF DVjHq9QFAmOt/GAFCQU5XjEACgkQCfGFDVjHq9TZRwEAv5ZK//eKwcXtIzlOUJSp zpd+FDc0rlJ0Tb6BqtD3i4UA/24YVtXEz4VWDbnT4zVDPlprUrFmK+y8os7NWA/4 UG0OuDMEYFh30xYJKwYBBAHaRw8BAQdARsaB2d3LtITVD92egPLEQnIS3OLWHouQ 2ZO+sFkkZ9SI9QQYFggAJgIbAhYhBBv0DWiHFJPxBKwzhwnxhQ1Yx6vUBQJjrfxg BQkFOVsNAIF2IAQZFggAHRYhBMiF7eXAuz4OVEBP1sHhZPYZZ7/eBQJgWHfTAAoJ EMHhZPYZZ7/e/V4A/A95i1a7DLjrqxMLXeE7b3ua3hi+FBmerm2bXf4FoSXUAQCg kh4PbxiA4gyDv8sP1U1Gf8MCVvNjSzIZE5ZTrNexAAkQCfGFDVjHq9SF1QEAnYH6 ze4M4KWIMQvtyk0bREuVrhUAStJ/skuZO/9Wk7MA/RayTd4KHf+LshLRbSz2ef5j wowFa6dypQrCIEv4LU4B =Gx3M -----END PGP PUBLIC KEY BLOCK-----
This policy is inspired by other policies of other people I have found in the web: