signing_key_revocation.fr.po 16 KB
Newer Older
amnesia's avatar
amnesia committed
1
2
3
4
5
6
7
# SOME DESCRIPTIVE TITLE
# Copyright (C) YEAR Free Software Foundation, Inc.
# This file is distributed under the same license as the PACKAGE package.
# FIRST AUTHOR <EMAIL@ADDRESS>, YEAR.
#
msgid ""
msgstr ""
8
"Project-Id-Version: \n"
amnesia's avatar
amnesia committed
9
"POT-Creation-Date: 2017-11-01 13:32+0100\n"
10
11
"PO-Revision-Date: 2017-11-14 13:31+0100\n"
"Language: fr\n"
amnesia's avatar
amnesia committed
12
13
14
"MIME-Version: 1.0\n"
"Content-Type: text/plain; charset=UTF-8\n"
"Content-Transfer-Encoding: 8bit\n"
15
16
17
"Last-Translator: Tails translators <tails@boum.org>\n"
"Language-Team: \n"
"X-Generator: Poedit 2.0.4\n"
amnesia's avatar
amnesia committed
18
19
20
21

#. type: Plain text
#, no-wrap
msgid "[[!meta title=\"Revocation of the Tails signing key\"]]\n"
22
msgstr "[[!meta title=\"Révocation de la clé de signature de Tails\"]]\n"
amnesia's avatar
amnesia committed
23
24
25
26
27
28

#. type: Plain text
msgid ""
"This document proposes a mechanism for the distribution and activation of "
"the revocation certificate of the Tails signing key."
msgstr ""
29
30
"Ce document propose un mécanisme de distribution et d'activation du "
"certificat de révocation de la clé de signature de Tails."
amnesia's avatar
amnesia committed
31
32
33
34

#. type: Title =
#, no-wrap
msgid "Goals\n"
35
msgstr "Buts\n"
amnesia's avatar
amnesia committed
36
37
38

#. type: Plain text
msgid "Covered by current proposal:"
39
msgstr "Atteints par la proposition actuelle :"
amnesia's avatar
amnesia committed
40
41
42
43
44

#. type: Plain text
#, no-wrap
msgid ""
"  A. Prevent any single individual from revoking our signing key.\n"
amnesia's avatar
amnesia committed
45
"  B. Allow a coalition of people from tails@boum.org to revoke our signing key\n"
amnesia's avatar
amnesia committed
46
47
48
49
"     in case most of the people from tails@boum.org become unavailable.\n"
"  C. Allow a coalition of people, not necessarily from tails@boum.org, to\n"
"     revoke our signing key in case everybody or almost everybody from\n"
"     tails@boum.org becomes unavailable.\n"
amnesia's avatar
amnesia committed
50
51
"  D. Make it hard for a coalition of people not from tails@boum.org to revoke\n"
"     our signing key unless everybody or almost everybody from tails@boum.org\n"
amnesia's avatar
amnesia committed
52
"     becomes unavailable.\n"
amnesia's avatar
amnesia committed
53
"  E. People not from tails@boum.org shouldn't know how the shares are spread\n"
amnesia's avatar
amnesia committed
54
"     and who has them.\n"
amnesia's avatar
amnesia committed
55
56
"  F. People in possession of a share of the revocation certificate\n"
"     of the signing key should have instructions on how to use it if needed.\n"
amnesia's avatar
amnesia committed
57
msgstr ""
58
59
60
61
62
63
64
65
66
67
68
69
70
71
"  A. Empêcher une personne seule de révoquer notre clé de signature.\n"
"  B. Permettre à un groupe de personnes appartenant à tails@boum.org\n"
"    de révoquer notre clé de signature dans le cas où la plupart des personnes\n"
"    de tails@boum.org deviennent injoignables.\n"
"  C. Permettre à un groupe de personnes, pas nécessairement de tails@boum.org,\n"
"    de révoquer notre clé de signature dans le cas où tous ou presque tous les membres\n"
"    de tails@boum.org deviennent injoignables.\n"
"  D. Rendre difficile à un groupe de personnes n'appartenant pas à tails@boum.org\n"
"    de révoquer notre clé à moins que tous ou presque tous les membres de tails@boum.org\n"
"    soient injoignables.\n"
"  E. Les personnes n'appartenant pas à tails@boum.org ne devraient pas savoir comment\n"
"    les parts sont distribuées, et qui en a.\n"
"  F. Les personnes possédant une part du certificat de révocation de la clé de signature\n"
"    devraient avoir des instructions pour s'en servir si besoin.\n"
amnesia's avatar
amnesia committed
72
73
74
75

#. type: Title =
#, no-wrap
msgid "Groups\n"
76
msgstr "Groupes\n"
amnesia's avatar
amnesia committed
77
78
79

#. type: Plain text
msgid "We define four complementary groups of trusted people:"
80
msgstr "Nous définissons 4 groupes complémentaires de personnes de confiance :"
amnesia's avatar
amnesia committed
81
82
83

#. type: Bullet: '  - '
msgid "Group A: people from tails@boum.org themselves"
84
msgstr "Groupe A: les personnes de tails@boum.org"
amnesia's avatar
amnesia committed
85
86
87

#. type: Bullet: '  - '
msgid "Group B"
88
msgstr "Groupe B"
amnesia's avatar
amnesia committed
89
90
91

#. type: Bullet: '  - '
msgid "Group C"
92
msgstr "Groupe C"
amnesia's avatar
amnesia committed
93
94
95

#. type: Bullet: '  - '
msgid "Group D"
96
msgstr "Groupe D"
amnesia's avatar
amnesia committed
97
98
99
100
101
102

#. type: Plain text
msgid ""
"All these people should have an OpenPGP key and understand what a revocation "
"certificate is."
msgstr ""
103
104
"Toutes ces personnes devraient avoir une clé OpenPGP et comprendre ce qu'est "
"un certificat de révocation."
amnesia's avatar
amnesia committed
105
106
107
108

#. type: Title =
#, no-wrap
msgid "Cryptographic shares\n"
109
msgstr "Parts cryptographiques\n"
amnesia's avatar
amnesia committed
110
111
112
113
114
115
116

#. type: Plain text
msgid ""
"We generate a revocation certificate of the signing key and split it into a "
"number of cryptographic shares, using for example Shamir's secret sharing "
"scheme implemented by `gfshare`."
msgstr ""
117
118
119
120
"Nous générons un certificat de révocation de la clé de signature et le "
"découpons en un certain nombre de parts cryptographiques, par exemple en "
"utilisant la méthode du partage de clé secrète de Shamir, implémentée par "
"`gfshare`."
amnesia's avatar
amnesia committed
121
122
123
124
125
126

#. type: Plain text
msgid ""
"The following combinations of people could get together and reassemble their "
"shares to reconstruct a complete revocation certificate:"
msgstr ""
127
128
129
"Les combinaisons suivantes de personnes pourraient se regrouper et "
"réassembler leurs parts pour reconstruire un certificat de révocation "
"complet :"
amnesia's avatar
amnesia committed
130
131
132

#. type: Bullet: '  - '
msgid "Three people from tails@boum.org: A{3}"
133
msgstr "Trois personnes de tails@boum.org : A{3}"
amnesia's avatar
amnesia committed
134
135
136

#. type: Bullet: '  - '
msgid ""
137
138
"Two people from tails@boum.org and one person not from tails@boum.org: "
"A{2}+(B|C|D)"
amnesia's avatar
amnesia committed
139
msgstr ""
140
141
"Deux personnes de tails@boum.org et une autre personne n'appartenant pas à "
"tails@boum.org : A{2}+(B|C|D)"
amnesia's avatar
amnesia committed
142
143
144
145
146
147

#. type: Bullet: '  - '
msgid ""
"One person from tails@boum.org, and two people not from tails@boum.org but "
"from two different groups: A+(B|C|D){2}"
msgstr ""
148
149
"Une personne de tails@boum.org, et deux personnes n'appartenant pas à "
"tails@boum.org mais de deux groupes différents : A+(B|C|D){2}"
amnesia's avatar
amnesia committed
150
151
152

#. type: Bullet: '  - '
msgid ""
amnesia's avatar
amnesia committed
153
154
"Three people not from tails@boum.org but from three different groups: (B+C+D)"
"{3}"
amnesia's avatar
amnesia committed
155
msgstr ""
156
157
"Trois personnes n'appartenant pas à tails@boum.org mais de trois groupes "
"différents : (B+C+D){3}"
amnesia's avatar
amnesia committed
158
159
160

#. type: Plain text
msgid "We generate these shares:"
161
msgstr "Nous générons trois parts :"
amnesia's avatar
amnesia committed
162
163
164

#. type: Bullet: '  - '
msgid "N shares, one for each person from tails@boum.org"
165
msgstr "N parts, une pour chaque personne de tails@boum.org"
amnesia's avatar
amnesia committed
166
167
168

#. type: Bullet: '  - '
msgid "1 share for people in group B"
169
msgstr "1 part pour les personnes du groupe B"
amnesia's avatar
amnesia committed
170
171
172

#. type: Bullet: '  - '
msgid "1 share for people in group C"
173
msgstr "1 part pour les personnes du groupe C"
amnesia's avatar
amnesia committed
174
175
176

#. type: Bullet: '  - '
msgid "1 share for people in group D"
177
msgstr "1 part pour les personnes du groupe D"
amnesia's avatar
amnesia committed
178
179
180
181

#. type: Title =
#, no-wrap
msgid "Who knows what\n"
182
msgstr "Qui sait quoi\n"
amnesia's avatar
amnesia committed
183
184
185
186

#. type: Bullet: '  - '
msgid "People from tails@boum.org know the composition of each group"
msgstr ""
187
"Les personnes de tails@boum.org connaissent la composition de chaque groupe"
amnesia's avatar
amnesia committed
188
189
190
191
192

#. type: Plain text
#, no-wrap
msgid ""
"  - People not from tails@boum.org:\n"
amnesia's avatar
amnesia committed
193
194
195
"    - Are explained in which circumstances they should revoke the signing key\n"
"    - Are told to write to a certain contact email address if they decide to revoke the signing key\n"
"    - Are told that they need three different shares to reassemble the revocation certificate\n"
amnesia's avatar
amnesia committed
196
msgstr ""
197
198
199
200
" - Les personnes extérieures à tails@boum.org :\n"
"   - Sont informées des circonstances dans lesquelles elles devraient révoquer la clé de signature\n"
"   - Sont invitées à contacter une certaine adresse mail si elles décident de révoquer la clé de signature\n"
"   - Sont informées qu'elles ont besoins de trois différentes parts pour réassembler le certificat de révocation\n"
amnesia's avatar
amnesia committed
201
202
203
204

#. type: Title =
#, no-wrap
msgid "Infrastructure\n"
205
msgstr "Infrastructure\n"
amnesia's avatar
amnesia committed
206
207
208
209

#. type: Bullet: '  - '
msgid "Everybody who owns a share is subscribed to a mailing list."
msgstr ""
210
211
"Toutes les personnes ayant une part sont inscrites à une liste de "
"discussions."
amnesia's avatar
amnesia committed
212
213
214
215
216
217

#. type: Bullet: '  - '
msgid ""
"This mailing list is hosted on a trusted server different from boum.org to "
"be more resilient than our usual communication channels."
msgstr ""
218
219
220
"Cette liste de diffusion est hébergée sur un serveur de confiance différent "
"de boum.org afin d'être plus résilient que nos canaux habituels de "
"communications."
amnesia's avatar
amnesia committed
221
222
223
224

#. type: Title =
#, no-wrap
msgid "Changing the members of the groups B, C, or D\n"
225
msgstr "Changer les membres des groupes B, C, ou D\n"
amnesia's avatar
amnesia committed
226
227
228

#. type: Plain text
msgid "To add someone to a given group:"
229
msgstr "Pour ajouter une personne à un groupe donné :"
amnesia's avatar
amnesia committed
230
231
232
233
234
235

#. type: Bullet: '  - '
msgid ""
"Request someone from that group to send her share to the new person in the "
"group."
msgstr ""
236
237
"Demander à une personne de ce groupe d'envoyer sa part à la nouvelle "
"personne."
amnesia's avatar
amnesia committed
238
239
240

#. type: Plain text
msgid "To remove someone from a given group:"
241
msgstr "Pour retirer une personne d'un groupe :"
amnesia's avatar
amnesia committed
242
243
244
245

#. type: Bullet: '  - '
msgid "Send new shares to everybody except to the person who is being removed."
msgstr ""
246
247
"Envoyer de nouvelles parts à tout le monde sauf à la personne qui est "
"retirée."
amnesia's avatar
amnesia committed
248
249
250
251
252
253
254
255

#. type: Bullet: '  - '
msgid ""
"Request everybody to delete their previous share and track this.  Once "
"everybody in 2 groups amongst B, C, or D have deleted their share, it "
"becomes impossible for them to reassemble the revocation certificate with "
"the previous set of shares."
msgstr ""
256
257
258
259
"Demander à tout le monde de supprimer leur part précédente et garder compte "
"de qui supprime sa part. Une fois que tout les membres de deux groupes parmi "
"le groupe B, C ou D ont supprimé leur part, il est impossible de regénérer "
"le certificat avec les anciennes parts."
amnesia's avatar
amnesia committed
260
261
262

#. type: Bullet: '  - '
msgid "Let's hope that this doesn't happen very often :)"
263
msgstr "Espérons que cela n'arrive pas souvent :)"
amnesia's avatar
amnesia committed
264
265
266
267

#. type: Title =
#, no-wrap
msgid "Expiry\n"
268
msgstr "Expiration\n"
amnesia's avatar
amnesia committed
269
270
271
272
273
274
275

#. type: Plain text
msgid ""
"There is no expiry date on revocation certificates. One way of cancelling "
"the revocation power is to destroy all copies of shares of 2 groups amongst "
"B, C, or D."
msgstr ""
276
277
278
"Les certificats de révocation n'ont pas de date d'expiration. Une manière "
"d'annuler le pouvoir de révocation est de détruire toutes les copies des "
"parts de deux groupes parmi les groupes B, C ou D."
amnesia's avatar
amnesia committed
279
280
281
282

#. type: Title =
#, no-wrap
msgid "Email to members of the groups\n"
283
msgstr "Mail envoyé aux membres des groupes\n"
amnesia's avatar
amnesia committed
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316

#. type: Plain text
#, no-wrap
msgid ""
"<pre>\n"
"Subject: distribution\n"
msgstr ""

#. type: Plain text
msgid "Hi,"
msgstr ""

#. type: Plain text
msgid ""
"We want to propose you to be part of a distributed mechanism for the "
"revocation certificate of the Tails signing key."
msgstr ""

#. type: Plain text
msgid ""
"The idea is to distribute cryptographic shares of this revocation "
"certificate to people that we trust. These cryptographic shares can be put "
"together to reassemble the revocation certificate and revoke the Tails "
"signing key. This may be needed in case something really bad happens to us "
"and we are not able to do the revocation ourselves."
msgstr ""

#. type: Plain text
msgid ""
"Note: In all this document, 'us' refers to the set of people subscribed to "
"tails@boum.org which is a Schleuder mailing list."
msgstr ""

amnesia's avatar
amnesia committed
317
318
319
320
321
322
323
324
#. type: Plain text
msgid "You can read a complete description of the distribution mechanism on:"
msgstr ""

#. type: Plain text
msgid "https://tails.boum.org/doc/about/openpgp_keys/signing_key_revocation."
msgstr ""

amnesia's avatar
amnesia committed
325
326
#. type: Plain text
msgid ""
amnesia's avatar
amnesia committed
327
328
"The recipe is public and the only secret component is the list of people who "
"are in possession of the cryptographic material."
amnesia's avatar
amnesia committed
329
330
331
332
333
334
msgstr ""

#. type: Plain text
msgid ""
"We are proposing this to you because we trust in both your technical "
"abilities to store your share in a safe place and manipulate it as required "
amnesia's avatar
amnesia committed
335
"but also because we trust in you as a human being to make informed judgment "
amnesia's avatar
amnesia committed
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
"on when to use your share and act only in the interest of Tails."
msgstr ""

#. type: Plain text
msgid "The bad things that could happen if the mechanism fails are:"
msgstr ""

#. type: Plain text
msgid ""
"A. The signing key is not revoked while it should be. This could allow "
"possible attackers to distribute malicious Tails ISO images or publish "
"malicious information on our name."
msgstr ""

#. type: Plain text
msgid ""
"B. The signing key is revoked when it should not have been. This would "
"prevent people from verifying our ISO images with OpenPGP until we publish a "
"new signing key."
msgstr ""

#. type: Title =
#, no-wrap
msgid "Distribution of the shares\n"
msgstr ""

#. type: Plain text
msgid ""
amnesia's avatar
amnesia committed
364
365
"Each person from tails@boum.org, group A, has a *different* share, A1, "
"A2, ..., An."
amnesia's avatar
amnesia committed
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
msgstr ""

#. type: Plain text
msgid ""
"On top of this, we defined three complementary groups, B, C, and D of "
"trusted people who have a close relationship with Tails but different "
"interests and different access to information about us. You are part of one "
"of these groups."
msgstr ""

#. type: Plain text
msgid "Everybody in group B has an *identical* share B."
msgstr ""

#. type: Plain text
msgid "Everybody in group C has an *identical* share C."
msgstr ""

#. type: Plain text
msgid "Everybody in group D has an *identical* share D."
msgstr ""

#. type: Plain text
msgid ""
amnesia's avatar
amnesia committed
390
391
"Three different shares are needed to reassemble the revocation certificate. "
"For example, shares A1, A2, and A3, or shares A1, B, and C."
amnesia's avatar
amnesia committed
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
msgstr ""

#. type: Title =
#, no-wrap
msgid "How to store your share\n"
msgstr ""

#. type: Plain text
msgid ""
"Please keep your share in an encrypted storage and make it as hard as you "
"can for untrusted people to get a copy of it."
msgstr ""

#. type: Plain text
msgid ""
amnesia's avatar
amnesia committed
407
408
"You can rename the file as long as you keep the number in the file name of "
"your share as it is needed to use the share."
amnesia's avatar
amnesia committed
409
410
411
412
413
414
415
416
msgstr ""

#. type: Plain text
msgid ""
"Feel free to back up the file but we might also request you to delete it at "
"some point and you should be able to know whether you still have a copy of "
"it or not. It is all-right to lose your share as long as you tell us that "
"you have lost it. It is actually worse to still have a copy of the share "
amnesia's avatar
amnesia committed
417
"\"somewhere\" while thinking that you don't, than to lose it by mistake."
amnesia's avatar
amnesia committed
418
419
420
421
422
423
424
425
426
427
428
429
430
431
msgstr ""

#. type: Plain text
msgid ""
"Don't hesitate to ask us if you need clarification on the technical aspects "
"of this."
msgstr ""

#. type: Title =
#, no-wrap
msgid "When to use your share\n"
msgstr ""

#. type: Plain text
amnesia's avatar
amnesia committed
432
msgid "Everybody in possession of a share is subscribed to a mailing list."
amnesia's avatar
amnesia committed
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
msgstr ""

#. type: Plain text
msgid ""
"If someone in possession of a share gets to learn about a very bad event "
"that happened to many of us and really thinks that we are not capable of "
"revoking the Tails signing key ourselves anymore, then this person should "
"write to the mailing list explaining why she thinks that the signing key "
"needs to be revoked."
msgstr ""

#. type: Plain text
msgid ""
"Yes, there is no mathematically proven algorithm for this and here is where "
"your judgement as a human being is needed. The description of the very bad "
"event should be checked or backed by enough people to be plausible."
msgstr ""

#. type: Plain text
msgid ""
"Keep in mind that we could still revoke the signing key ourselves as long as "
"three of us are able to communicate and gather their shares. So we only need "
"your help if only two of us are still able to communicate."
msgstr ""

#. type: Plain text
msgid ""
"Unless you really want to start the key revocation process, do not write to "
"this mailing list."
msgstr ""

#. type: Title =
#, no-wrap
msgid "Further communications\n"
msgstr ""

#. type: Plain text
msgid ""
"In case we need to communicate with you about this revocation mechanism in "
"the future, we will always do it with messages signed by the Tails signing "
"key itself. We might do so for example to:"
msgstr ""

#. type: Bullet: '  - '
msgid "Ask you to send your share to a new member of your group."
msgstr ""

#. type: Bullet: '  - '
msgid ""
amnesia's avatar
amnesia committed
482
"Ask you to delete your share. This could be needed to cancel the power of "
amnesia's avatar
amnesia committed
483
484
485
486
487
488
489
490
"others people's share: as long as enough of you delete their shares, the few "
"people that might not delete them would end up with unusable shares."
msgstr ""

#. type: Plain text
msgid "So, can we count on you for this?"
msgstr ""

amnesia's avatar
amnesia committed
491
492
493
494
495
496
#. type: Plain text
msgid ""
"If you answer positively, we will send you your share and subscribe you to "
"the mailing list."
msgstr ""

amnesia's avatar
amnesia committed
497
498
499
#. type: Plain text
#, no-wrap
msgid ""
amnesia's avatar
amnesia committed
500
"Thanks, and may the force be with you!\n"
amnesia's avatar
amnesia committed
501
502
"</pre>\n"
msgstr ""