-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

I, the holder of the OpenPGP key 0xA8DC7067E25FBABB, hereby describes
the policy I apply when certifying other OpenPGP public keys.

As per RFC 4880 §5.2.1 [1], User IDs can be certified using four
distinct levels, which are dubbed “generic” (level 0 in GnuPG manuals),
“persona” (level 1), “casual” (level 2), and “positive” (level 3) [1].

Here is how I appreciate and use these levels when signing a key:

– I have used the “generic” certification level in the past, before
  deciding to apply the present policy (as it is the default level used
  by GnuPG), but I don’t use it anymore (starting from the publication
  of this policy);

– I never use the “persona” certification level;

– I use the “casual” certification level for a key whose fingerprint has
  been given to me directly by the keyholder;

– I use the “positive” certification level if the keyholder also showed
  me some form of government-issued ID.

I don’t emit “trust signatures” (RFC 4880 $5.2.3.13).

I will update this document appropriately whenever I change my signing
practices.


[1] http://tools.ietf.org/html/rfc4880#section-5.2.1

-----BEGIN PGP SIGNATURE-----

iQEcBAEBCAAGBQJUopcVAAoJEKpDc+bILHitZyIIAJ0s74Mzq7/PNjuWcGfBWU6u
N1bfUGVVDRwxeQMvAmfNurco+NTEaqdcdGfCxQLat5K0qBmLs03QBYMDUCimfJOr
gmmevfiHo0t3Tcse4GxUg3KBhN66t3Eb2ogskvWree01U8T/KoF7NIHHpouK3SQQ
w+uCKn5sb2QrjPc4xK4ECyWoLoJgrDLohC97IxMdLg1EZF2tCLcWohL/1cDxyV2W
4x92AqTIAlDCc4Jl4xg4Uawojqwtxf2SFVZ8zg5tAiNmNGvETUI4gtvFABj0+xze
UBj6mFJOHZIwphTVQihytEA/atjNFO+OCEO3gtNHBGqNETy4s+3OnOglSy4HGwI=
=ibov
-----END PGP SIGNATURE-----