[sf-lug] Announcing digitalwitness.org - free public signing (witnessing) service
Michael Paoli
michael.paoli at berkeley.edu
Thu Oct 31 00:11:30 PDT 2024
Announcing digitalwitness.org - free public signing (witnessing) service
At present it's in open/public Beta.
At present the ssh interface is open, other(s) (most notably web) will
likely follow in time.
Let's say you have a (possibly) large digital artifact (or archive file
of such items). Or even possibly much smaller item. Suggested approach
is to get secure hash/digest of the item, e.g.:
$ sha512sum digital_artifact_file
3ddd987f33a96b50777d15f7850d80d8e30badf12501289d28d5ee4857d62c25c2c700b6a1313cace8b128fe1e4d1ff4787d70c46e1f633e5e4589bf3f2343ba
digital_artifact_file
$
Then get that hash/digest signed, e.g.:
$ ssh -nT digitalwitness at digitalwitness.org --
3ddd987f33a96b50777d15f7850d80d8e30badf12501289d28d5ee4857d62c25c2c700b6a1313cace8b128fe1e4d1ff4787d70c46e1f633e5e4589bf3f2343ba
-----BEGIN PGP SIGNATURE-----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=5mCo
-----END PGP SIGNATURE-----
$
For more information, help, public signing key, etc., just run without
any "command" or arguments thereof, e.g.:
$ ssh -nT digitalwitness at digitalwitness.org
And that will provide one with much relevant information, and including
important details (e.g. the signed data is signed without first adding
any implicit newline on the end, though one can explicitly provide that
if desired).
More information about the sf-lug
mailing list