{{Header}} {{title|title= Warrant Canary Draft }} {{#seo: |description=DRAFT. Edit suggestions for {{project_name_long}} warrant canary. }} {{intro| DRAFT. Edit suggestions for {{project_name_short}} warrant canary. }} Prerequisite knowledge: [[Trust#{{project_name_short}}_Warrant_Canary|{{project_name_short}} warrant canary]]. As the page title Dev/Warrant Canary Draft indicates, this is only a draft. This is not the actual [[Trust#{{project_name_short}}_Warrant_Canary|{{project_name_short}} warrant canary]]. This page is just for discussion and suggestions; only the actually valid, fresh, signed canary matters. This page allows for easier edits compared to git and is far more accessible to users. = DRAFT =
Canary for Kicksecure / Whonix project

----
Statements
-----------

The Kicksecure / Whonix lead developer who digitally signed this file states the following:

1. Canary issue date: see the gpg signature time.

2.

Definition “artifact”: Kicksecure / Whonix software, Kicksecure / Whonix downloads, Kicksecure / Whonix source code

* The Kicksecure / Whonix Project has never added any backdoor to any artifact.
* The Kicksecure / Whonix Project has never turned over any signing key.
* The Kicksecure / Whonix Project has never knowingly signed any artifact containing any backdoor.
* The Kicksecure / Whonix Project has never weakened, compromised, or subverted any of its cryptography.

3. We plan to publish the next canary statement within 4 weeks.

This file should be signed with a detached OpenPGP signature by the Kicksecure / Whonix lead developer.

Do not trust the contents of this file blindly - always verify digital signatures!

Take special note if this message ceases to exist.

Special announcements
---------------------

None.

Disclaimers and notes
---------------------

Be mindful that Kicksecure / Whonix has been designed under the assumption that all relevant infrastructure is permanently compromised. This means NO trust is placed in any of the servers or services which host or provide any Whonix-related data, particularly software updates, source code repositories, and Kicksecure / Whonix downloads.

This canary scheme is not infallible. Signing the declaration makes it very difficult for a third party to produce arbitrary declarations, but this does not prevent the use of coercion, blackmail, compromise of the signer's laptop or other measures to produce false declarations.

The news feeds quoted below (see Proof of freshness) confirm this canary could not have been created earlier than the issue date. This demonstrates a series of canaries was not created in advance.

This declaration is provided without any guarantee or warranty. It is not legally binding upon any parties in any form. The signer should never be held legally responsible for any statements made here.

Proof of freshness
-------------------

Editor comment: Proof of freshness will be automatically appended as a result of the warrent-canary-update script. Do not edit below here without prior discussion.
= Links = * https://github.com/{{project_name_short}}/developer-meta-files/blob/master/misc/canary-template.txt * https://github.com/{{project_name_short}}/developer-meta-files/blob/master/usr/bin/dm-upload-canary * [[Trust#{{project_name_short}}_Warrant_Canary|{{project_name_short}} warrant canary]] * [[systemcheck#Warrant_Canary_Check|Warrant Canary Check]] = Forum Discussion = https://forums.whonix.org/t/whonix-warrant-canary/3208 = Footnotes = {{reflist|close=1}} {{Footer}} [[Category:Development]]