PGP Certification Agency
We are running an experimental PGP Certification Agency for users within
dcs.ed.ac.uk. We hope that this agency will improve the connection
of new users into the PGP web of trust.
Certification Policy
In order to encourage community trust of our signature we have a clear
certification policy. We will never sign keys that do not conform to this
policy.
- We will only sign keys belonging to users with email addresses within
the dcs.ed.ac.uk domain
- We will only sign keys belong to staff or students in the
department
- We will not sign RSA keys which are smaller than 512 bits in length.
We recommend 1024 bits as being the smallest reasonable length for
newly generated keys
- We require at least two forms of ID, one of which must contain
a photo, to be checked in person before a key is issued.
Current restrictions
At present, only staff keys will be signed - this restriction may be lifted
in the future.
Signing procedure
To get your key signed, send an ASCII armoured version to
pgpca@dcs.ed.ac.uk
You will then be sent an email containing further instructions - you will
be asked to take a printed copy of your PGP fingerprint, along with two
forms of ID, one of which must have a photograph, for checking.
Following this check, your key will be signed and mailed back to you. We
recommend that you then upload the signed key to the keyservers.
Our key
Our key is available here, and on the keyservers.
Its details are:
| Length: | 1024
|
| Key-ID: | 0x37D5DD31
|
| Fingerprint: | FC AF 9A 7F FD 01 9B 90 77 FB B8 45 80 6D C3 5D
|
pgpca@dcs.ed.ac.uk