All articles

1. New OpenPGP certificate for dkg, December 2023

   dkg's New OpenPGP certificate in December 2023

   In December of 2023, I'm moving to a new OpenPGP certificate.

   You might know my old OpenPGP certificate, which had an fingerprint of C29F8A0C01F35E34D816AA5CE092EB3A5CA10DBA.

   My new OpenPGP certificate has a fingerprint of: D477040C70C2156A5C298549BB7E9101495E6BF7.

   Both certificates have the same set of User IDs:

   • Daniel …

2. 2022 Digital Rights Job Fair

   I'm lucky enough to work at the intersection between information communications technology and civil rights/civil liberties. I get to combine technical interests and social/political interests.

   I've talked with many folks over the years who are interested in doing similar work. Some come from a technical background, and some …

3. Bitstream Vera Must Die

   Bitstream Vera must die.

4. New OpenPGP certificate for dkg, 2021

   dkg's 2021 OpenPGP transition

   As 2021 begins, I'm changing to a new OpenPGP certificate.

   I did a similar transition two years ago, and a fair amount has changed since then.

   You might know my old OpenPGP certificate as:

   pub   ed25519 2019-01-19 [C] [expires: 2021-01-18]
         C4BC2DDB38CCE96485EBE9C2F20691179038E5C6
   uid          Daniel Kahn …

5. Tech-assisted Contact-Tracing against the COVID-19 pandemic

   What are the risks and potential benefits of contact-tracing?

6. DANE OPENPGPKEY for debian.org

   DANE OPENPGPKEY for debian.org

   I recently announced the publication of Web Key Directory for @debian.org e-mail addresses. This blog post announces another way to fetch OpenPGP certificates for @debian.org e-mail addresses, this time using only the DNS. These two mechanisms are complementary, not in competition. We want …

7. WKD for debian.org

   WKD for debian.org

   You can now fetch the OpenPGP certificate for any Debian developer who uses an @debian.org e-mail address using Web Key Directory (WKD).

   How?

   With modern GnuPG, if you're interested in the OpenPGP certificate for dkg just do:

   gpg --locate-keys dkg@debian.org
   

   By default, this …

8. Community Impact of OpenPGP Certificate Flooding

   Community Impact of OpenPGP Certificate Flooding

   I wrote yesterday about a recent OpenPGP certificate flooding attack, what I think it means for the ecosystem, and how it impacted me. This is a brief followup, trying to zoom out a bit and think about why it affected me emotionally the way …

9. OpenPGP Certificate Flooding

   OpenPGP Certificate Flooding

   My public cryptographic identity has been spammed to the point where it is unusable in standard workflows. This blogpost talks about what happened, what I'm doing about it, and what it means for the broader ecosystem.

   If you work with me and you use OpenPGP certificates to …

10. New OpenPGP certificate for dkg, 2019

    Update

    I've scrapped my first try at a new OpenPGP certificate for 2019 (the one I published yesterday). See the history discussion at the bottom of this post for details. This blogpost has been updated to reflect my revised attempt.

    2019 OpenPGP transition (try 2)

    My old OpenPGP certificate will …

Page 1 / 13 »