User Tools

Site Tools

Trace: Keyoxide
keyoxide

This is an old revision of the document!

Table of Contents

Keyoxide

Keyoxide verifies online identity with cryptography.

Once you have a PGP key pair, there are two ways to set identity.

  1. Annotate your OpenPGP profile (public key) with “proofs”. (Uploading this to their server creates a profile page. (My Keyoxide profile page.))
  2. Sign a Signature Profile (text file) with “proofs”. (You can send this to people. Not super useful yet.)

Instructions for Annotating your PGP Public Key

For each location you want to prove, you have to do two things:

  1. Add some proof at the site. Like a Gist with proof text at Github, or a TXT record with proof text in a DNS entry.
  2. Point to the above proof with an Identity Claim in the signature profile (text file) or OpenPGP profile.

Create a Keyoxide profile by uploading an annotated key to keys.openpgp.org.

Annotating

$ gpg --edit-key MYKEYFINGERPRINT
...
gpg> showpref  # lists current notations
...
     Notations: proof@ariadne.id=dns:dblu.me?type=TXT
                proof@ariadne.id=https://mastodon.social/@dblume
                proof@ariadne.id=https://gist.github.com/dblume/19738ca4ba998f2f784904190a1a22ea
                proof@ariadne.id=dns:dlma.com?type=TXT
gpg> notation
Enter the notation:proof@ariadne.id=dns:mynewdomain.com?type=TXT
gpg> save

First time OpenPGP Profile (Public Key) Upload

gpg --armor --output public.asc --export MYKEYFINGERPRINT

go to https://keys.openpgp.org/upload and upload the public.asc you have created in the code above.

Subsequent changes to key annotations

Add/Remove/Edit an annotation in your public key. 

gpg --keyserver hkps://keys.openpgp.org --send-keys MYKEYFINGERPRINT

Example Signature Profile

(Again, not super useful yet.)

Sign a txt file with gpg -u EMAIL_ADDRESS –clear-sign mysignature.txt, and get an asc file like:

mysignature.txt.asc
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
 
See https://keyoxide.org/1CBD499C61C7A3A7DED3935F5E21C0D40ED9EB54
 
proof=https://gist.github.com/dblume/19738ca4ba998f2f784904190a1a22ea
proof=dns:dblu.me?type=TXT
proof=dns:dlma.com?type=TXT
-----BEGIN PGP SIGNATURE-----
 
iQFDBAEBCgAtFiEEHL1JnGHHo6fe05NfXiHA1A7Z61QFAmRxxosPHGRhdmlkQGRs
bWEuY29tAAoJEF4hwNQO2etUUOkH+wcvV+VFX8Cx46LTHr0w1q/lcPPg/dHdtWnq
xy7TAjBvsQgjMr6jWcT+y3TXHVxGa8NA93w1gF0xS34bl3G00U90/rbTtWMc590Z
SF3MmSPVYmYJUec04opgZp49T/coAmxQ99KlLBClbtFECQoGzNNw91igbCt3P6QL
sDvcB6CFmX5cr2wNKFeKhCUEI1IQKN7RJpwrP7SUffmo9qy8ZGcjfF2H+g8QLqtT
FVHbPIwVElYbzuMSlcAIHp2GDVMIci3c24gYxFnSUxAQBl1vWmJ1/II51hHlJFje
Hts2J6IieIEu7iN1/WG3LEvAn0SbK6ifL5XNCdagFpWCIi6xsWk=
=Yq6F
-----END PGP SIGNATURE-----

This can be verified at https://keyoxide.org/sig.

keyoxide.1685208418.txt.gz · Last modified: 2023/05/27 10:26 by dblume