Monkeysign: OpenPGP Key Exchange for Humans

Monkeysign is a tool to overhaul the OpenPGP keysigning experience and bring it closer to something that most primates can understand.

The project makes use of cheap digital cameras and the type of bar code known as a QRcode to provide a human-friendly yet still-secure keysigning experience.

No more reciting tedious strings of hexadecimal characters. And, you can build a little rogue’s gallery of the people that you have met and exchanged keys with! (Well, not yet, but it’s part of the plan.)

Monkeysign also features a user-friendly commandline tool, similar to caff, to sign OpenPGP keys following the current best practices.

Monkeysign was written by Jerome Charaoui and Antoine Beaupre and is licensed under GPLv3.

Features

  • commandline and GUI interface
  • GUI supports exchanging fingerprints with qrcodes
  • print your OpenPGP fingerprint on a QRcode
  • key signature done on a separate keyring
  • signature sent in an encrypted email to ensure:
  1. the signee controls the signed email
  2. the signee controls the private key
  3. the signee decides what to do with the signature
  • local (“non-exportable”) signatures
  • send through local email server, arbitrary SMTP server or other programs

For usage instructions, see Usage section, for install instructions, see Install section and for support, see the Contribute section.

Similar projects