Keys of Steffen Prince (sprin) <steffen@sprin.io>
I use tools based on the OpenPGP standard to encrypt private messages and sign documents, code, public messages.
All my keys are signed by the following Master Signing Key:
pub 4096R/3006E021 2016-07-05
Key fingerprint = D0A6 F47A 49D6 7A7D 0369 4BE0 A587 D405 3006 E021
uid Steffen Prince (Master Signing Key) <steffen@sprin.io>
You should verify the fingerprint of this master key using some other channel than just this repo (e.g. my Hacker News account or from keys.sprin.io as in case somebody was providing you with a falsified repo, they would be sure to also feed you with a falsified master key.
- The key is attached here: sprin-master-key.asc.
The following key should be used to encrypt emails sent to steffen@sprin.io:
pub 4096R/E50CBEAE 2016-07-17 [expires: 2017-07-17]
Key fingerprint = B1C4 D150 72FC CD5E 21A0 728D 5E6A 10CE E50C BEAE
uid Steffen Prince (sprin.io Email Key) <steffen@sprin.io>
gpg> check
uid Steffen Prince (sprin.io Email Key) <steffen@sprin.io>
sig!3 E50CBEAE 2016-07-17 [self-signature]
sig! 3006E021 2016-07-17 Steffen Prince (Master Signing Key) <steffen@s
- The key is attached here: sprin-io-email-key.asc
The following key is used to sign projects managed by sprin.io:
pub 4096R/C489978F 2016-07-08
Key fingerprint = BDAD A52E 42FE 70F6 A3B6 66E6 6FFD 3241 C489 978F
uid Steffen Prince (sprin.io Code Signing Key) <steffen@sprin.io>
gpg> check
uid Steffen Prince (sprin.io Code Signing Key) <steffen@sprin.io>
sig!3 C489978F 2016-07-08 [self-signature]
sig! 3006E021 2016-07-08 Steffen Prince (Master Signing Key) <steffen@s
- The key is attached here: sprin-io-code-signing-key.asc.
The following key is used to sign public messages, such as on mailing lists:
pub 4096R/B7C90242 2016-07-10 [expires: 2017-07-10]
Key fingerprint = DF90 32E9 0713 B88A 9DC9 EFA0 D71A 2E4C B7C9 0242
uid Steffen Prince (Public Message Signing Key) <steffen@sprin.io>
gpg> check
uid Steffen Prince (Public Message Signing Key) <steffen@sprin.io>
sig!3 B7C90242 2016-07-10 [self-signature]
sig! 3006E021 2016-07-10 Steffen Prince (Master Signing Key) <steffen@s
- The key is attached here: public-message-signing-key.asc.
Credits to Qubes OS Project for a good example of code-signing in action and the excellent "Split GPG" mechanism which dramatically minimizes the risk of compromise of the signing mechanism:
Credits to Joanna Rutkowska of Qubes OS and Invisible Things Lab for a nice template on how to self-publish key information on which this repository is based:
This repo is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.