-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

Key Signing Policy
==================

This policy is valid for all signatures made using the key:

pub   1024D/CC5CF182 1999-02-28
      Key fingerprint = 1D8E C918 F4F3 58BC E08E  4456 009C 42DB CC5C F182
uid                  Michael Roth <mroth@nessie.de>
uid                  Michael Roth <mroth@mroth.eu>
uid                  Michael Roth <mail@mroth.eu>
uid                  Michael Roth <mroth@mroth.net>
uid                  Michael Roth <mail@mroth.net>
uid                  Michael Roth <mroth@kde.org>
uid                  Michael Roth <mroth@gnupg.org>
uid                  Michael Roth

The signee is the key owner that receives a signature to his or
her key from me, the signer.

I always verify the signee its key fingerprint with the signee
personally. For example the signee verified its key fingerprint
printed on a sheet of paper.

I use two signature levels:

Level 3 (sig3):

  + I know the signee personally for years. For example well
    known work or study colleagues and friends.
  + I only sign UIDs which consist of the signee its name.
  + Email addresses in signed UIDs are valid because I know
    them and I used them with the signee.

Level 2 (sig2):

  + I have met the signee personally and the signee proved its
    identity to me with a national identity card, passport or
    driving licence. 
    For example signees that I met on key signing parties.
  + I only sign UIDs which consist of the signee its name.
  + I never validate the signee its email addresses on its UIDs.

This policy was written 24. August 2004.
Updated 06. May 2006 (New UIDs added).


-----BEGIN PGP SIGNATURE-----

iD8DBQFEXI1qAJxC28xc8YIRA0CqAJ45sy/OQ2vjLvxZAeYno0A84Z7JfQCfScic
ji6pylaY/36/8s1Q7T5l4mo=
=DqKY
-----END PGP SIGNATURE-----