Message Signing Policy for Gonzalo Bermúdez

v2015.2 - Nov 17, 2015

Policy statement

As of 2006-07-24, I'm signing all outgoing email with my OpenPGP key (email address removed to prevent spam):

pub   4096R/E2FC4825 2006-07-24 [expires: 2081-01-01]
      Key fingerprint = 607D 555B 2B11 B1B3 916A  CBDE 31E5 FE63 E2FC 4825
uid                  Gonzalo Bermúdez <>
uid                  [jpeg image of size 1346]
sub   2048R/0A267238 2009-07-11 [expires: 2019-06-01]

These signatures mean only that it's very probably me who wrote those emails unless otherwise stated, and nothing else.

In certain situations, I may be unable or unwilling to sign a certain email. I should be contacted in case you need to confirm it was me who wrote it.

Due to the fact that it's so easy to forge an identity, there's absolutely no guarantee that an unsigned email came from me. It is also possible although unlikely, that my key gets compromised. Thus a signed email is no guarantee either, and it's up to you to determine the value of such a signature.

This statement should be extended to any other signatures I issue, like files or any other message type.

Version history

Version 2015.2, 2015-11-17 [ link ]
Removed encryption key from the document. Won't be issuing new versions of this document for those type of keys, as they don't affect it.
Version 2015.1, 2015-06-05 [ link ]
New encryption key 0x7E9D5506 added.
Version 2013.1, 2013-12-22 [ link ]
New encryption key 0x62F7DCB9 added after expiration of 0xA1F017BE.
Version 2012.1, 2012-05-18 [ link ]
Policy not changed. Did change the versioning scheme. As I'll be updating this page at least yearly, it seems reasonable to use the year number as part of the version. Added encryption subkey 0xA1F017BE to replace 0xD8BF382F which is about to expire.
Version 1.5, 2011-05-29 [ link ]
Policy not changed. Added a new encryption subkey, to supersede 0xE81301B0 which is soon to expire.
Version 1.4, 2009-07-11 [ link ]
Revoked the signing subkey, which was superseded by 0x0A267238. This document will be signed by the primary key, to validate the switch.
Version 1.3, 2008-06-01 [ link ]
Added the new encryption subkey, and the main and signing subkey's expiration date.
Version 1.2, 2007-07-04 [ link ]
Fixed XHTML issues.
Version 1.1, 2006-08-30
Corrected some typos.
Version 1.0, 2006-08-27
Initial release.

This policy can and should be checked against its detached signature.


Copyright (c) 2006-2015 Gonzalo Bermúdez

Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation License, Version 1.2.