Debian APT Key Revocation Procedure

To: debian-security@lists.debian.org
Subject: Debian APT Key Revocation Procedure
From: adrelanos <adrelanos@riseup.net>
Date: Thu, 31 Oct 2013 12:55:01 +0000
Message-id: <[🔎] 52725325.7030906@riseup.net>

What are your plans if you ever have reason to believe that the Debian
archive signing key has been compromised?

http://ftp-master.debian.org/keys.html says:

> Key Revocation Procedure

> A revokation certificate for the archive key is produced at the time
of the creation of an archive key. The program gfshare (package
libgfshare-bin) (a Shamir's secret sharing scheme implementation) is
then used to produce 12 shares of which 7 are needed to recover the
revokation cert. This procedure is for use in emergencies only (such as
losing ftp-master.debian.org and all of the backups, a hopefully
unlikely event) as the key can normally be used to produce its own
revokation certificate.

But what could you do with the revocation certificate?

Only manually spread the news and ask users to obtain the revocation
certificate?

Or will the apt on Debian user's machines somehow learn about that
revocation certificate? If so, how does that procedure work? Where is it
configured?

Reply to:

Follow-Ups:
- Re: Debian APT Key Revocation Procedure
  - From: Paul Wise <pabs@debian.org>

Prev by Date: Re: SSL for debian.org/security?
Next by Date: Re: Debian APT Key Revocation Procedure
Previous by thread: Re: Suggestion for http://www.debian.org/security/faq or http://www.debian.org/security/
Next by thread: Re: Debian APT Key Revocation Procedure
Index(es):
- Date
- Thread