-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ================================================================================ PGP Key Signing Policy August 15th, 2017 ================================================================================ This policy replaces my previous policy dated November 19th, 2015. Notably, I no longer offer Level 2 verification using Verified PayPal accounts since PayPal no longer provides a means for users to check one another's "Verified" status. Sorry. Table of Contents ================= [1] About Me [2] Verifying This Policy [3] PGP Identity Verification Levels [1] About Me ============ My name is James Shackleford and I am an assistant professor in the Electrical and Computer Engineering Department at Drexel University. You can find my faculty profile here: http://www.drexel.edu/ece/contact/faculty-directory/ShacklefordJames Details for my *CURRENT* key, D5870ED3: Type: 4096-bit RSA Created: 2015-11-09 Fingerprint: 7F9F D4E8 141E F12C 190E A988 FEBE 2144 D587 0ED3 UID: James Shackleford Signing Subkey: 221B96CE (2048-bit RSA) Crypto Subkey: 26D79FB1 (2048-bit RSA) Revoked/Retired Keys (do not use these): 4BB9614B (3808-bit RSA) 2015-11-06 AB16E7E8 (4096-bit RSA) 2012-11-28 C435B965 (2048-bit RSA) 2012-04-10 CC2CB7EE (1024-bit RSA) 2002-05-24 I currently deal with a high volume of incoming e-mail. If you want to begin communicating with me for the first time via e-mail, the likelihood of me responding to your message in a timely fashion increases dramatically if you take the time to sign it with your PGP key. Signed messages get kicked to the top. [2] Verifying This Policy ========================= This key signing policy has been clearsigned with my D5870ED3 key (via subkey 221B96CE). You can check the validity of this document with GNU Privacy Guard using: $ gpg --verify policy.txt [3] PGP Identity Verification Levels ==================================== When signing another PGP user's public key using GPG, you are presented with the opportunity to indicate how carefully you have verified that user's identity. The scale used by PGP has 4 discrete levels: Level 0 -- "I will not answer." Level 1 -- "I have not checked at all." Level 2 -- "I have done casual checking." Level 3 -- "I have done very careful checking." Interpretations of these levels vary amongst signers. Consequently, signing policies (such as this document) have become necessary. My interpretation of these verification levels follows: Level 0 -- "I will not answer." ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ I currently do not use this. Level 1 -- "I have not checked at all." ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ I will never use this. Level 2 -- "I have done casual checking." ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ The owner of the key has provided to me a form of trusted identification. I consider government issue ID cards, passports, etc. as permissible. Students at Drexel University that I can validate via the student photo registration database also satisfy this constraint. Level 3 -- "I have done very careful checking." ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ All of the requirements described in Level 2 with the additional requirement that the owner of the key has been a personal or professional acquaintance of mine for at least one year. ================================================================================ - END OF DOCUMENT - ================================================================================ -----BEGIN PGP SIGNATURE----- iQEcBAEBCgAGBQJZk1itAAoJEG5nZGUiG5bOs1IH/1MBJtETtKDTslulPoQy41I3 lp2R6fCvGS35SGHky50AcFvUiq2v0mgB4t+DbjOylcHTuOamakQePOXZk60BhsiS z6Ox2b/CjRiylWsL5qo4HuqDtoYaQitHI6RXhxOiYuzcQiYWbcmI0xuv0DYF7Bm9 U2eqI1rPnOGTEPG945uArb3r2gaYEF4t0jKfoSck9zEGQV6CwbTMwRVudcz+x6By 172vjpxPxQt0J9vSOpiHYI4hbwv2WYY3stAs5A2+8fh3/khhf2/MJmxILX+xCn4c muo89ddPcR1JZyRK/ndWIqf/4fOD8CELDalhZDe6oPtdjlHY4OpJYzi4KucVMS8= =22CW -----END PGP SIGNATURE-----