Strengthening a curated web of trust in a geographically distributed project

Gunnar E. Wolf; Gina Gallegos-García

doi:10.1080/01611194.2016.1238421

Strengthening a curated web of trust in a geographically distributed project

Gunnar E. Wolf, Gina Gallegos-García

Escuela Superior de Ingeniería Mecánica y Eléctrica (ESIME), Unidad Culhuacán

Research output: Contribution to journal › Article › peer-review

3 Scopus citations

Abstract

In this article the authors present a trust management scheme, derived from the horizontal and almost anarchic web of trust model, but following a curatorship step that allows it to become a centerpiece for authentication in Debian, one of the largest and longest lived free software projects and producer of the eponymous GNU/Linux software distribution. This is done by analyzing the experience gained through a large-scale key migration process that spanned five years and nearly 100% of the originally existing keys, carried out attempting to minimize loss of keyring connectivity and strength, while keeping up to date with the best current security practices.

Original language	English
Pages (from-to)	459-475
Number of pages	17
Journal	Cryptologia
Volume	41
Issue number	5
DOIs	https://doi.org/10.1080/01611194.2016.1238421
State	Published - 3 Sep 2017

Keywords

Key length
PGP
trust models
web of Trust

Access to Document

10.1080/01611194.2016.1238421

Cite this

@article{4abb3226902042c5b82a0f2b3fb8528c,

title = "Strengthening a curated web of trust in a geographically distributed project",

abstract = "In this article the authors present a trust management scheme, derived from the horizontal and almost anarchic web of trust model, but following a curatorship step that allows it to become a centerpiece for authentication in Debian, one of the largest and longest lived free software projects and producer of the eponymous GNU/Linux software distribution. This is done by analyzing the experience gained through a large-scale key migration process that spanned five years and nearly 100% of the originally existing keys, carried out attempting to minimize loss of keyring connectivity and strength, while keeping up to date with the best current security practices.",

keywords = "Key length, PGP, trust models, web of Trust",

author = "Wolf, {Gunnar E.} and Gina Gallegos-Garc{\'i}a",

note = "Publisher Copyright: {\textcopyright} 2017 Taylor & Francis.",

year = "2017",

month = sep,

day = "3",

doi = "10.1080/01611194.2016.1238421",

language = "Ingl{\'e}s",

volume = "41",

pages = "459--475",

journal = "Cryptologia",

issn = "0161-1194",

number = "5",

}

TY - JOUR

T1 - Strengthening a curated web of trust in a geographically distributed project

AU - Wolf, Gunnar E.

AU - Gallegos-García, Gina

PY - 2017/9/3

Y1 - 2017/9/3

N2 - In this article the authors present a trust management scheme, derived from the horizontal and almost anarchic web of trust model, but following a curatorship step that allows it to become a centerpiece for authentication in Debian, one of the largest and longest lived free software projects and producer of the eponymous GNU/Linux software distribution. This is done by analyzing the experience gained through a large-scale key migration process that spanned five years and nearly 100% of the originally existing keys, carried out attempting to minimize loss of keyring connectivity and strength, while keeping up to date with the best current security practices.

AB - In this article the authors present a trust management scheme, derived from the horizontal and almost anarchic web of trust model, but following a curatorship step that allows it to become a centerpiece for authentication in Debian, one of the largest and longest lived free software projects and producer of the eponymous GNU/Linux software distribution. This is done by analyzing the experience gained through a large-scale key migration process that spanned five years and nearly 100% of the originally existing keys, carried out attempting to minimize loss of keyring connectivity and strength, while keeping up to date with the best current security practices.

KW - Key length

KW - PGP

KW - trust models

KW - web of Trust

UR - http://www.scopus.com/inward/record.url?scp=85007305103&partnerID=8YFLogxK

U2 - 10.1080/01611194.2016.1238421

DO - 10.1080/01611194.2016.1238421

M3 - Artículo

SN - 0161-1194

VL - 41

SP - 459

EP - 475

JO - Cryptologia

JF - Cryptologia

IS - 5

ER -

Strengthening a curated web of trust in a geographically distributed project

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this