Strengthening a Curated Web of Trust in a Geographically Distributed Project

by Gunnar Wolf, Gina Gallegos-García


In this paper we present a trust management scheme, derived from the horizontal and almost anarchic Web of Trust model, but following a curatorship step that allows it to become a centerpiece for authentication in Debian, one of the largest and longest lived free software projects and producer of the eponymous GNU/Linux software distribution. This is done by analizing the experience gained through a large-scale key migration process that spanned five years and nearly 100% of the originally existing keys, carried out attempting to minimize loss of keyring connectivity and strength, while keeping up to date with the best current security practices.


Official source

PDF available


Strengthening a curated web of trust in a geographically distributed project Gunnar E. Wolf and Gina Gallegos-García Cryptologia

Currently available online only; volume and number expected to be available after print publiation, by May 2017.


author = {Gunnar E. Wolf and Gina Gallegos-García},
title = {Strengthening a curated web of trust in a geographically distributed project},
journal = {Cryptologia},
volume = {0},
number = {0},
pages = {1-16},
year = {0},
doi = {10.1080/01611194.2016.1238421},

URL = {
eprint = {