Re: Why are in-person meetings required for the debian keyring?

To: Russ Allbery <rra@debian.org>
Cc: debian-project@lists.debian.org
Subject: Re: Why are in-person meetings required for the debian keyring?
From: Ian Jackson <ijackson@chiark.greenend.org.uk>
Date: Fri, 13 Feb 2015 15:14:39 +0000
Message-id: <[🔎] 21726.5343.709720.588655@chiark.greenend.org.uk>
In-reply-to: <[🔎] 87mw4iao0v.fsf@hope.eyrie.org>
References: <[🔎] 87r3twgsvb.fsf@thinkpad.rath.org> <[🔎] 87twysi3rt.fsf@hands.com> <[🔎] 20150211204508.GA24789@helios.pault.ag> <[🔎] 54DC0AFB.8090302@kvr.at> <[🔎] 87bnkzqc73.fsf@thinkpad.rath.org> <[🔎] 54DD054B.9020709@kvr.at> <[🔎] 87mw4iao0v.fsf@hope.eyrie.org>

Russ Allbery writes ("Re: Why are in-person meetings required for the debian keyring?"):
> I think the point is that so could the person who showed up at DebConf.
> Once you start postulating a sufficiently motivated attacker that they
> would be willing to take the time to establish a contribution track record
> and go through the NM process, showing up at DebConf with a forged ID is
> not increasing the difficulty of the attack by very much, nor is it
> increasing the risk by all that much.

There are organisations with plenty of money, who would perhaps like
to infiltrate us, but for whom risk of exposure is the biggest cost of
trying.

Establishing a track record of contributions from an email alias and
some computers is very easy for them.  Indeeed already they do it
quite a lot, both overtly and covertly - cf what looks to some like
derailment (ie sabotage) of certain IETF WGs.

Sending a warm body to turn up at a conference is much riskier.  Even
if the person just turns up at the KSP, and engages in no small talk
with anyone, their photo might be taken; they might be `made' by
suspicious attendees; their (no doubt offically issued) alias
documents might be scrutinised and recorded; and so on.

These are perhaps small risks, but a small risk of headlines like
`spooks found covertly infiltrating Free Software project' is a big
cost to those kind of people.

Ian.

Reply to:

Follow-Ups:
- Re: Why are in-person meetings required for the debian keyring?
  - From: Abou Al Montacir <abou.almontacir@sfr.fr>
- Re: Why are in-person meetings required for the debian keyring?
  - From: Russell Stuart <russell-debian@stuart.id.au>

References:
- Why are in-person meetings required for the debian keyring?
  - From: Nikolaus Rath <Nikolaus@rath.org>
- Re: Why are in-person meetings required for the debian keyring?
  - From: Philip Hands <phil@hands.com>
- Re: Why are in-person meetings required for the debian keyring?
  - From: Paul Tagliamonte <paultag@debian.org>
- Re: Why are in-person meetings required for the debian keyring?
  - From: Christian Kastner <debian@kvr.at>
- Re: Why are in-person meetings required for the debian keyring?
  - From: Nikolaus Rath <Nikolaus@rath.org>
- Re: Why are in-person meetings required for the debian keyring?
  - From: Christian Kastner <debian@kvr.at>
- Re: Why are in-person meetings required for the debian keyring?
  - From: Russ Allbery <rra@debian.org>

Prev by Date: Re: Why are in-person meetings required for the debian keyring?
Next by Date: Re: Why are in-person meetings required for the debian keyring?
Previous by thread: Re: Why are in-person meetings required for the debian keyring?
Next by thread: Re: Why are in-person meetings required for the debian keyring?
Index(es):
- Date
- Thread