44 lines
1.6 KiB
YAML
44 lines
1.6 KiB
YAML
usage: Location Key
|
|
officiant: Ryan Heywood
|
|
location: Private Home
|
|
witnesses: N/A
|
|
hardware: Lenovo Ideapad 1i
|
|
laptop_modifications:
|
|
boot_media: SanDisk MicroSD Card (via reader)
|
|
backup_media: SanDisk MicroSD Card (alternative, via reader)
|
|
smart_cards: N/A, not provisioned yet
|
|
software:
|
|
- name: AirgapOS
|
|
repo: https://git.distrust.co/public/airgpa
|
|
ref: 5904a22c8075482a27cc1a72ac28065e45c9a7c9
|
|
playbooks:
|
|
- name: location-key-provisioning.md
|
|
repo: https://git.distrust.co/public/docs
|
|
ref: 18cbd8ff696b1adaf3b9019aa5c0eb5c7546cc2d
|
|
inputs:
|
|
- name: operator.pub.asc
|
|
identifier: openpgp4fpr:88823a75ecaa786b0ff38b148e401478a3fbef72
|
|
outputs:
|
|
- name: location.pub.asc
|
|
identifier: openpgp4fpr:2ed5c21fc2a1b53a57ab44230f0fc76cb830d6c8
|
|
log:
|
|
- 2024-08-06:0137: >-
|
|
Selected a room in residence with no electronics, closed window, and closed
|
|
blinds.
|
|
- 2024-08-05:0141: >-
|
|
Booted the laptop with AirgapOS off an SD card, using an external reader, as
|
|
the internal reader was neither working when booting nor working when
|
|
AirgapOS was live. Replace boot image with input/output SD card.
|
|
- 2024-08-05:0147: >-
|
|
Followed ceremony guide to generate artifacts, copying artifacts to SD card
|
|
- 2024-08-05:0224: >-
|
|
Finish ceremony, deleting all files and powering off the laptop.
|
|
- 2024-08-05:0227: >-
|
|
Plug SD card into Librem hardware directly, forwarding to Vault VM. Copy
|
|
public file (location public key) to Distrust VM.
|
|
general_notes:
|
|
- >-
|
|
No one entered the room of the house while the ceremony was performed.
|
|
Laptop has not been adequately sealed but has been left with a trusted agent,
|
|
including surveillance.
|