qkm-ceremonies/2024-08-x/test/ceremony.yml

44 lines
1.7 KiB
YAML
Raw Normal View History

usage: Disaster Recovery (Test)
officiant: Anton Livaja
location: Private Home (Address Redacted)
witnesses: N/A
hardware: Dell XPS 13 9630
firmware: BIOS 2.13.0
modifications: N/A
boot_media: Kingston SDCIT2/8GBSP
software:
- name: Airgap OS
repo: https://git.distrust.co/public/airgap
ref: main
hash: 485fc58bfb1b4dc75a81138d93948385cc5bf600
playbooks:
- name: some/path/to/location_key_generation.md
repo: https://git.distrust.co/public/docs
ref: some-git-ref-here
notes: used once for each Location Key
- name: some/path/to/hybrid_quroum_key_generation.md
repo: https://git.distrust.co/public/docs
ref: some-git-ref-here
notes: used once to generate Root Entropy and Disaster Recovery Key
outputs:
- cert: ./cert
- shardfile: ./shardfile
Location (Test) Public Key Fingerprints:
- 0609D5C2634DB5D75226AD9A7A8A6F24873977E4
- 5F827701822425E8BB0D2EAB43EC881D8C80DE41
- 6E18E082945BC43411C3B490E43B49017440605D
Cold Quorum Key (Test) Fingerprint:
- 8BA0304345D05775C303E292D9BDBC00D3E85E87
log:
- 2024-08-04:0900: One man team generates all the Location Keys inside of a
Qube VM
- 2024-08-04:0920: SD card with flashed airgap.iso is booted on the Dell XPS13
and public certs and `ceremony.sh` script are brought over on a usb stick; the
usb is mounted, ceremony.sh is run and pub keys are verified
- 2024-08-04:0922: Set the system time using `date -s "2024-08-04 23:10:00", as
the system time has to be after pgp cert creation and before expiration time of
certs
- 2024-08-04:0925: The disaster recovery pgp cert and shards are copied to the
usb drive and brought over to an online connected machine and committed to git
repo
general_notes: N/A