Articles by Daniel Kahn Gillmor (dkg)

  1. WKD for

    WKD for

    You can now fetch the OpenPGP certificate for any Debian developer who uses an e-mail address using Web Key Directory (WKD).


    With modern GnuPG, if you're interested in the OpenPGP certificate for dkg just do:

    gpg --locate-keys

    By default, this …

  2. OpenPGP Certificate Flooding

    OpenPGP Certificate Flooding

    My public cryptographic identity has been spammed to the point where it is unusable in standard workflows. This blogpost talks about what happened, what I'm doing about it, and what it means for the broader ecosystem.

    If you work with me and you use OpenPGP certificates to …

  3. New OpenPGP certificate for dkg, 2019


    I've scrapped my first try at a new OpenPGP certificate for 2019 (the one I published yesterday). See the history discussion at the bottom of this post for details. This blogpost has been updated to reflect my revised attempt.

    2019 OpenPGP transition (try 2)

    My old OpenPGP certificate will …

  4. Protecting Software Updates

    In my work at the ACLU, we fight for civil rights and civil liberties. This includes the ability to communicate privately, free from surveillance or censorship, and to control your own information. These are principles that I think most free software developers would agree with. In that vein, we just …

  5. Changes for GnuPG in Debian

    The GNU Privacy Guard (GnuPG) upstream team maintains three branches of development: 1.4 ("classic"), 2.0 ("stable"), and 2.1 ("modern").

    They differ in various ways: software architecture, supported algorithms, network transport mechanisms, protocol versions, development activity, co-installability, etc.

    Debian currently ships two versions of GnuPG in every maintained …

Page 1 / 13 »