-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

===============================================================================
2006-01-02			OpenPGP Key Signing Policy of Stefan Schmidt	 0xDDF51665
===============================================================================

Version:	1.0
Contact:	Stefan Schmidt <stefan@datenfreihafen.org>


Preamble:
- ---------

This policy will be used for signings with the following key, after 2006-01-01: 

pub   1024D/DDF51665 2003-02-17
      Key fingerprint = D082 B548 E41B FFB6 D327  DFCB 6CD4 ACBD DDF5 1665
uid                  Stefan Schmidt <stefan@datenfreihafen.org>
uid                  Stefan Schmidt <stefan@sostec.de>
uid                  Stefan Schmidt <s.schmidt@tu-bs.de>
sub   2048g/943EF24D 2003-02-17

The key (0xDDF51665) can be fetched from my website or a keyserver.
The key you can download is stripped down. It contains only a self signature.
You can update the signatures over a keyserver.
http://www.datenfreihafen.org/~stefan/GPG-PGP/0xDDF51665.asc


Signature notes:
- ----------------

There will be signing notes for each key I will sign. You can find them at:
http://www.datenfreihafen.org/~stefan/GPG-PGP/notations/


Fingerprint exchange and identity:
- ----------------------------------

Before I can sign a key the following steps are necessary:

- - I have to get a hardcopy of your fingerprint. Print out preferred, but
  handwritten is also accepted.
- - I have checked the name of the key owner against an photo identity card, such
  as a passport.
- - I have checked the photo of the identity card against your face.


Signing the key:
- ----------------

Before I sign your key, I download it from a keyserver. I check the fingerprint,
UID and name against your hardcopy. 
To verify the email address in your key, I send a mail that is encrypted with
your public key to every single UID in your key. This mail contains my signature
to this UID. In this way I can confirm that you can access the email address,
have access to the private key to decrypt the message and you can decide
yourself if you would like to upload my signature to a keyserver.

Signing only keys, jabber keys and other UIDs without email address get a level 
2 signature only.


Level of Trust:
- ---------------

Level 3:	All tests passed. Identity, fingerprint and email check.

Level 2:	Identity and fingerprint check passed. Email check NOT passed.


Expire date:
- ------------

My signature will expire at the same date the signed key expires.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
Comment: http://www.datenfreihafen.org/contact.html

iD8DBQFDuaoubNSsvd31FmURAs9FAKCHQUVddU5eaKl9ZSn/DwTP7F5N5ACfUYJ2
bj/D4Npg9TkwmOPFiih7FKg=
=/0Kx
-----END PGP SIGNATURE-----