From 48a9de51351005828ba7ab5c11ff5e4984fefbdb Mon Sep 17 00:00:00 2001
From: ryan <ryan@distrust.co>
Date: Tue, 6 Aug 2024 02:52:33 -0400
Subject: [PATCH] add assets for 2024-08-x for ryan heywood

---
 .../location-keys/ryan-heywood/ceremony.yml   | 43 +++++++++++++++++++
 .../ryan-heywood/location.pub.asc             | 39 +++++++++++++++++
 2 files changed, 82 insertions(+)
 create mode 100644 2024-08-x/prod/location-keys/ryan-heywood/ceremony.yml
 create mode 100755 2024-08-x/prod/location-keys/ryan-heywood/location.pub.asc

diff --git a/2024-08-x/prod/location-keys/ryan-heywood/ceremony.yml b/2024-08-x/prod/location-keys/ryan-heywood/ceremony.yml
new file mode 100644
index 0000000..da3ad7b
--- /dev/null
+++ b/2024-08-x/prod/location-keys/ryan-heywood/ceremony.yml
@@ -0,0 +1,43 @@
+usage: Location Key
+officiant: Ryan Heywood
+location: Private Home
+witnesses: N/A
+hardware: Lenovo Ideapad 1i
+laptop_modifications:
+boot_media: SanDisk MicroSD Card (via reader)
+backup_media: SanDisk MicroSD Card (alternative, via reader)
+smart_cards: N/A, not provisioned yet
+software:
+- name: AirgapOS
+  repo: https://git.distrust.co/public/airgpa
+  ref: 5904a22c8075482a27cc1a72ac28065e45c9a7c9
+playbooks:
+- name: location-key-provisioning.md
+  repo: https://git.distrust.co/public/docs
+  ref: 18cbd8ff696b1adaf3b9019aa5c0eb5c7546cc2d
+inputs:
+- name: operator.pub.asc
+  identifier: openpgp4fpr:88823a75ecaa786b0ff38b148e401478a3fbef72
+outputs:
+- name: location.pub.asc
+  identifier: openpgp4fpr:2ed5c21fc2a1b53a57ab44230f0fc76cb830d6c8
+log:
+- 2024-08-06:0137: >-
+  Selected a room in residence with no electronics, closed window, and closed
+  blinds.
+- 2024-08-05:0141: >-
+  Booted the laptop with AirgapOS off an SD card, using an external reader, as
+  the internal reader was neither working when booting nor working when
+  AirgapOS was live. Replace boot image with input/output SD card.
+- 2024-08-05:0147: >-
+  Followed ceremony guide to generate artifacts, copying artifacts to SD card
+- 2024-08-05:0224: >-
+  Finish ceremony, deleting all files and powering off the laptop.
+- 2024-08-05:0227: >-
+  Plug SD card into Librem hardware directly, forwarding to Vault VM. Copy
+  public file (location public key) to Distrust VM.
+general_notes:
+- >-
+  No one entered the room of the house while the ceremony was performed.
+  Laptop has not been adequately sealed but has been left with a trusted agent,
+  including surveillance.
diff --git a/2024-08-x/prod/location-keys/ryan-heywood/location.pub.asc b/2024-08-x/prod/location-keys/ryan-heywood/location.pub.asc
new file mode 100755
index 0000000..7fc2a3a
--- /dev/null
+++ b/2024-08-x/prod/location-keys/ryan-heywood/location.pub.asc
@@ -0,0 +1,39 @@
+-----BEGIN PGP PUBLIC KEY BLOCK-----
+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+=U9DZ
+-----END PGP PUBLIC KEY BLOCK-----