Difference between pages "Key signing" and "User:Andrew Buckeridge"

From LCA2014 Delegate Wiki
(Difference between pages)
Jump to: navigation, search
m (Fix JEB)
 
(Miniconfs/OpenGov)
 
Line 1: Line 1:
= Key signing party =  
+
= Miniconfs/OpenGov =
We should have a key signing party, up for suggestions on where and when and what format
+
<pre>
 +
All information that intended for public consumption should be at least
 +
CC-BY (or lGPL for software). I would prefer CC-BY-SA and full GPL for
 +
software so changes are more visible. This is essential for software.
 +
Software disclosure is more important as software can be used to change
 +
data.
  
 +
I am a member of an Australian Standards committee BD 58. This
 +
committee wanted to borrow just the electrical safety information from
 +
CPSISC Pocketbook V2 for an annex. As the Australian Standards and the
 +
process is closed it could not be a Share Alike style license like GPL,
 +
CC-BY-SA, etc., but the CC-BY attribution license was ideal. This
 +
licence was recommended by the Government 2.0 Taskforce.
  
== Before the event ==
+
The document was a DRMed PeDoFile with just copyright and no mention of
 +
a license. To crack it or use it in any way I needed to obtain written
 +
permission to supercede the secret and unknown DRM conditions.
  
You need a gpg key to start, create one now!
+
I obtained advice which also recommended that I seek to obtain the
You might as well make it with as big a key size as possible.
+
material under the CC-BY license. This was discussed with Standards
<pre>gpg --gen-key
+
Australia and BD 58. Then I had job of finding who to ask. I finally
gpg --list-secret-keys
+
was able to contact DCCEE - Legal at climatechange.gov.au in Nov 2011.
gpg --fingerprint FA9EC035</pre>
+
  
 +
I finally got a reply in Jun 2012 which was CC-BY, but with additional
 +
restrictions.
  
== Submitting your key ==
+
> (a) The material must be used in an appropriate context and reproduced
 +
> accurately without distortion of meaning.
 +
There were many factual errors and only some of the electrical safety
 +
section was useful. We had members of wiring committee EL 1 to assist.
  
Currently nothing has been decided, please add suggestions below.
+
Attribution (b) is reasonable and required by the CC-BY license. By
* create a wiki page containing your fingerprints
+
attributing the original document any changes would be visible.
** [[https://lca2014.linux.org.au/wiki/User:Daniel_sobey Daniel Sobey]]
+
* Some other tool, edit this page and we may use it
+
  
{| class="wikitable"
+
> (c) The material must not be used for commercial sale or profit.
|+ people participating in identification exchange
+
Australian Standards are not free or open. They cost money and
! Real Name !! Key Id !! Key Fingerprint !! Preferred E-mail Address
+
discussions are confidential.
|-
+
  
|-
+
This DRMed PeDoFile cost a bomb to produce and only had marginal
| J Random Person  || 0x0000000000000000 || FFFF FFFF FFFF FFFF FFFF  FFFF FFFF FFFF FFFF FFFF || jrp@example.com
+
entertainment value and was in conflict with the Australian Standard
 +
3999 used by competent established thermal insulation installers.
 +
However, inspectors off the dole queues were using this bad fiction.
  
 +
They then did another one. This was mentioned at BD 58, but no one else
 +
was interested. I have not reviewed it. We do not use it.
  
|-
+
> Australian Government agencies are required to release copyright public
| [[https://lca2014.linux.org.au/wiki/User:Mark_Atwood Mark Atwood]]  || 0x5BB3D38332608126 || D37B E0BF 09D3 C69B DDAC  78B5 5BB3 D383 3260 8126 || me@mark.atwood.name
+
> sector information under Creative Commons by licence or other open
|-
+
> content licences, wherever possible. This is in line with
| [[https://lca2014.linux.org.au/wiki/User:Daniel_sobey Daniel Sobey]]    ||  0xFA9EC035 || 28F8 2EA3 26A3 7748 EC41  CD28 00D4 08C4 FA9E C035 || dns@dns.id.au
+
> recommendations of Government 2.0 Taskforce Report.
|-
+
http://www.ag.gov.au/RightsAndProtections/IntellectualProperty/Pages/LicensinganduseofCommonwealthmaterial.aspx
| [[https://lca2014.linux.org.au/wiki/User:Daniel_sobey Daniel Sobey]]    ||  0x7E706939 || 9F04 E553 09DA 89A9 44EE  EF41 6D34 FF8A 7E70 6939 || dns@dns.id.au
+
|-
+
| [[https://lca2014.linux.org.au/wiki/User:Daniel_sobey Daniel Sobey]]    ||  0x2EC08895 || AEAE 53B3 DEE8 1DF9 F28C  A657 86F3 A534 2EC0 8895 || dns@dns.id.au
+
|-
+
| [[https://lca2014.linux.org.au/wiki/User:Paul_Warren Paul Warren]]  || 0x5341F366208EDB2A ||  DF30 FFE6 CBEE ED60 E340  EEBA 5341 F366 208E DB2A || pwarren@pwarren.id.au, paul@thewarrens.name
+
|-
+
| [[https://lca2014.linux.org.au/wiki/User:Paul_Warren Paul Warren]]  || 0x89A45B0613ABFE97 ||  2D60 F3A8 CB31 9C99 F76E  0637 89A4 5B06 13AB FE97 || pwarren@pwarren.id.au
+
|-
+
| [[https://lca2014.linux.org.au/wiki/User:Elizabeth_Krumbach_Joseph Elizabeth Krumbach Joseph]]  || 0x2FC76319BC2349FC || F1A1 2FEF 82A5 666C F9A4  A748 2FC7 6319 BC23 49FC || lyz@princessleia.com
+
|-
+
| [[https://lca2014.linux.org.au/wiki/User:Arkady_Gundroff Arkady Gundroff]]  || 0x877D7A54 || 27A4 1D27 E9B8 5AD7 1C2A  8A86 ECF8 CCDD 877D 7A54 || rkd@therkd.org
+
|-
+
| [[https://lca2014.linux.org.au/wiki/User:Arkady_Gundroff Arkady Gundroff]]  || 0x22F75870 || 2D39 1FA0 84A6 AE66 D525  0805 68B2 320E 22F7 5870 || rkd@therkd.org
+
|-
+
| [[https://lca2014.linux.org.au/wiki/User:Kye_Russell Kye Russell]]  || 0xE44FDDE6 || 8AA9 BF1D 306F 1CD6 4D2C  95BA 662A 7109 E44F DDE6 || me@kyerussell.com
+
|-
+
| [[http://www.humbug.org.au/RussellStuart Russell Stuart]] || 0xE7843A8C || D25D D87D F8EA 9ED1 D146  5023 F523 1C62 E784 3A8C || russell-gpg@stuart.id.au<br/>ras@debian.org<br/>russell-debian@stuart.id.au
+
|-
+
| Christopher Yeoh || 0xAAE53307 ||7D5F DD42 C463 D88F 559E  BDF0 3714 8A73 AAE5 3307|| cbkyeoh@gmail.com
+
|-
+
| [[http://www.james.rcpt.to/ James Bromberger]] || 0x9D85C53C || 8591 20FE 0D9F A6A5 B054  C775 AEC8 2874 9D85 C53C || jeb@debian.org<br />jeb@cpan.org<br />james@rcpt.to
+
|-
+
| [[http://www.azabani.com Delan Azabani]] || 0x18416AA7 || 7F21 2455 67B2 3E09 2664  20EF 0548 7476 1841 6AA7 || delan@azabani.com
+
|-
+
| Luke Mercuri || 0x1690F8D6 || 143E 6C0F F6E1 C865 6F71  F5A4 243D 179F 1690 F8D6 || mercluke@mercluke.net
+
|-
+
| Thomas Chung || 0xB18A274C || 6951 B594 524C E3A9 3734  494F 17E8 091D B18A 274C || thomas@nomology.id.au<br>thomaschung32@gmail.com
+
|-
+
| Karl-Johan Karlsson || 0x331FAE7D || 5893 644B 7783 B5D3 9FD7  F4C6 01BA C4B5 331F AE7D || creideiki@lysator.liu.se<br />creideiki@ferretporn.se
+
|-
+
| Brendan O'Dea || 0xEBDDBB60 || 52D5 B159 3D7F D914 6A5A  6307 1C7C 41ED EBDD BB60 || bod@debian.org
+
|-
+
| Nathan Rickerby || 0xC99822D9 || E123 4567 F324 185C 70B4  DF2C 2542 D563 C998 22D9 || nathan@rickerby.id.au
+
|-
+
| Anibal Monsalve Salazar || 0x947897D8<br>0xACA4350A || C604 5C81 3887 B77C 2DFF  97A5 7C56 ACFE 9478 97D8<br>83C5 0FF1 7534 757A 89D1  6988 0348 02C7 ACA4 350A || anibal@debian.org
+
|-
+
| Jason Lewis || 0x505E764E || B10B 2E72 BB30 FE47 ABC2  F1B9 FA57 1EC7 505E 764E || jason@dickson.st
+
|-
+
| Russell Keith-Magee || 0x37BB5BC3 || CBE7 4366 F6CA 0A0D 4BA7  D2F8 3D2D AB6A 37BB 5BC3 || russell@keith-magee.com
+
|-
+
| Geordie Millar || 0x417605A7 || BB70 1BC9 41C7 09AC FFBD  5E14 8A0F 973C 4176 05A7 || gm@stackunderflow.com
+
|-
+
| Sage Weil || 0x288995C8 || ED53 CB8A 53A2 DE42 87C9  AE98 DA44 20ED 2889 95C8 || sage@newdream.net
+
|-
+
| Adam Baxter || 0xF14914D3 || C479 701B BB7A 73A2 F324  CAAF 266E 8B7D F149 14D3 || voltagex@voltagex.org
+
|}
+
  
== At the event ==
+
I was asked to obtain some aerial photography from a WA state agency. I
We will need someone to collate the keys and print them out.
+
requested TIFFs as they come out of the camera as this had meta data
Please let us know how many we should print and where to print them.
+
that can be used to stitch the strips together. I had made this clear,
 +
but what I got was photoshopped Adobe "JPEGs". My intention was to
 +
make JFIF JPEGs with the size and balance that I wanted, but what I had
 +
got was already JPEGed!
  
What we did last year was go to a lecture theatre with a projector.
+
Some sources of data are plaintext. This is least obfuscated form of
Each person stands up, shows their photo id and read their fingerprint aloud.
+
data. I was told that they will be helpful and paste it in Excel and
printouts of everyone's fingerprints were provided so you can tick off as you go
+
then send you an XLS or worse still an XLSX of it!
This worked ok but took a long time to get through everyone.
+
  
 +
These are examples of undisclosed software being used to change data.
  
 +
Perhaps government agencies can not read my plaintext email as they are
 +
using Outlook?
  
== Ad hoc Signing ==
+
This is why I always discuss via telephone.
  
Put your fingerprint on a piece of paper and hand it out to people.
+
The plaintext version of text/plain media type is described in RFC 20,
No need to do it formally just swap as you meet.
+
822, 2045, 2046 (4.1 Text Media Type), 2822 and 5322. The precedents
 +
for plainetxt go back to teleprinting. In the earliest form you cut
 +
ticker tape on space and that multiple spaces are paragraph breaks
 +
where you skip a line. This was done later with CRLF and CRLFCRLF by
 +
TTY operators. Similar plaintext is also the source code basis of
 +
software.
 +
</pre>
  
Things to watch out for:
+
= Astronomy BoF =
* does it match thair name
+
<pre>
* Does the person have a key with that fingerprint, do the numbers match.
+
CMOS CPUs are clocked much faster than thermal limits permit so they
* know that anyone can generate a key and claim an email address
+
must slow down as they heat up. When processes have yielded the CPU
* if someone can be bothered they can keep trying to generate a key with the first 8 digits the same as another key but getting the whole fingerprint is nearly impossible
+
stops and cools down. This means that the CPU can run much faster in
 +
bursts than it could in continuous operation. This mode of operation
 +
was first used in CMOS mainframes where a valid process will yield for
 +
IO. Something similar was done in calculator key-press, get, process,
 +
update display and then sleep to save battery power.
  
 +
Linux has the ignore_nice_load feature which stops nice jobs breaking
 +
power management that must now be regarded as essential. Linux does not
 +
usually stop, but it does slow the CPU down. This cools the CPU and
 +
allows it to burst up to full speed when priority jobs become ready.
  
== When you get home ==
+
When you are running stuff like https://boinc.berkeley.edu/ you may not
after the event you should have notes of who to trust the next thing to do is sign the key.
+
want it to slow down your apps. Running it nice alone will not prevent
You can individually sign each key, export the signature and send it to them.
+
your apps from being slowed down. You need to give your CPU a chance to
 +
cool down so that your apps can run faster.
  
[https://wiki.debian.org/caff caff] is a tool that automates the signing a little.
+
# echo 1 >/sys/devices/system/cpu/cpufreq/ondemand/ignore_nice_load
It will sign and send an email (encrypted if possible) containing the signature.
+
</pre>
It requires some setup but it does make things easier.
+
 
 +
= Contact =
 +
<pre>
 +
.   !  .   !  .  !  .  !  .  !  .  !  .  !  .  !  .  !
 +
! I am the intended addressee of any email sent to me. Such email is my
 +
! property and I may send samples of unsolicited email or randomly
 +
! directed Outlook mail to network news or post on the www in order to
 +
! expose and discourage such behaviour.
 +
! http://n50.bgcaus.com/~andrewb/public.key current or D3572FAE
 +
! Key fingerprint = D6F3 CE30 D359 8288 3C39  34B1 4CED ABD9 D357 2FAE
 +
! Andrew Buckeridge <andrewb@bgc.com.au>, Mob +61 4 29370306
 +
! Work - Tel: +61 8 93344925, Fax: +61 8 93344660
 +
! Home - Tel: +61 8 92846018, Fax: +61 8 92846011
 +
</pre>

Revision as of 10:31, 8 January 2014

Miniconfs/OpenGov

All information that intended for public consumption should be at least
CC-BY (or lGPL for software). I would prefer CC-BY-SA and full GPL for
software so changes are more visible. This is essential for software.
Software disclosure is more important as software can be used to change
data.

I am a member of an Australian Standards committee BD 58. This
committee wanted to borrow just the electrical safety information from
CPSISC Pocketbook V2 for an annex. As the Australian Standards and the
process is closed it could not be a Share Alike style license like GPL,
CC-BY-SA, etc., but the CC-BY attribution license was ideal. This
licence was recommended by the Government 2.0 Taskforce.

The document was a DRMed PeDoFile with just copyright and no mention of
a license. To crack it or use it in any way I needed to obtain written
permission to supercede the secret and unknown DRM conditions.

I obtained advice which also recommended that I seek to obtain the
material under the CC-BY license. This was discussed with Standards
Australia and BD 58. Then I had job of finding who to ask. I finally
was able to contact DCCEE - Legal at climatechange.gov.au in Nov 2011.

I finally got a reply in Jun 2012 which was CC-BY, but with additional
restrictions.

> (a) The material must be used in an appropriate context and reproduced
> accurately without distortion of meaning.
There were many factual errors and only some of the electrical safety
section was useful. We had members of wiring committee EL 1 to assist.

Attribution (b) is reasonable and required by the CC-BY license. By
attributing the original document any changes would be visible.

> (c) The material must not be used for commercial sale or profit.
Australian Standards are not free or open. They cost money and
discussions are confidential.

This DRMed PeDoFile cost a bomb to produce and only had marginal
entertainment value and was in conflict with the Australian Standard
3999 used by competent established thermal insulation installers.
However, inspectors off the dole queues were using this bad fiction.

They then did another one. This was mentioned at BD 58, but no one else
was interested. I have not reviewed it. We do not use it.

> Australian Government agencies are required to release copyright public
> sector information under Creative Commons by licence or other open
> content licences, wherever possible. This is in line with
> recommendations of Government 2.0 Taskforce Report.
http://www.ag.gov.au/RightsAndProtections/IntellectualProperty/Pages/LicensinganduseofCommonwealthmaterial.aspx

I was asked to obtain some aerial photography from a WA state agency. I
requested TIFFs as they come out of the camera as this had meta data
that can be used to stitch the strips together. I had made this clear,
but what I got was photoshopped Adobe "JPEGs". My intention was to
make JFIF JPEGs with the size and balance that I wanted, but what I had
got was already JPEGed!

Some sources of data are plaintext. This is least obfuscated form of
data. I was told that they will be helpful and paste it in Excel and
then send you an XLS or worse still an XLSX of it!

These are examples of undisclosed software being used to change data.

Perhaps government agencies can not read my plaintext email as they are
using Outlook?

This is why I always discuss via telephone.

The plaintext version of text/plain media type is described in RFC 20,
822, 2045, 2046 (4.1 Text Media Type), 2822 and 5322. The precedents
for plainetxt go back to teleprinting. In the earliest form you cut
ticker tape on space and that multiple spaces are paragraph breaks
where you skip a line. This was done later with CRLF and CRLFCRLF by
TTY operators. Similar plaintext is also the source code basis of
software.

Astronomy BoF

CMOS CPUs are clocked much faster than thermal limits permit so they
must slow down as they heat up. When processes have yielded the CPU
stops and cools down. This means that the CPU can run much faster in
bursts than it could in continuous operation. This mode of operation
was first used in CMOS mainframes where a valid process will yield for
IO. Something similar was done in calculator key-press, get, process,
update display and then sleep to save battery power.

Linux has the ignore_nice_load feature which stops nice jobs breaking
power management that must now be regarded as essential. Linux does not
usually stop, but it does slow the CPU down. This cools the CPU and
allows it to burst up to full speed when priority jobs become ready.

When you are running stuff like https://boinc.berkeley.edu/ you may not
want it to slow down your apps. Running it nice alone will not prevent
your apps from being slowed down. You need to give your CPU a chance to
cool down so that your apps can run faster.

# echo 1 >/sys/devices/system/cpu/cpufreq/ondemand/ignore_nice_load

Contact

!   .   !   .   !   .   !   .   !   .   !   .   !   .   !   .   !   .   !
! I am the intended addressee of any email sent to me. Such email is my
! property and I may send samples of unsolicited email or randomly
! directed Outlook mail to network news or post on the www in order to
! expose and discourage such behaviour.
! http://n50.bgcaus.com/~andrewb/public.key current or D3572FAE
! Key fingerprint = D6F3 CE30 D359 8288 3C39  34B1 4CED ABD9 D357 2FAE
! Andrew Buckeridge <andrewb@bgc.com.au>, Mob +61 4 29370306
! Work - Tel: +61 8 93344925, Fax: +61 8 93344660
! Home - Tel: +61 8 92846018, Fax: +61 8 92846011