If you can fake a PGP-signed message from Cicada 3301, crashdemons will give you $75 by Paypal. Marcusw has pledged $100 US in BTC toward this end as well, with solutions accepted at his discretion, and pending extended verification. onecool has pledged $100 USD in user's preferred transfer method. Qualifying requirements: - Must generate *No Warnings* in the GPG (GnuPG) tool using the --verify option and the key (see below) imported as trusted. - - For example: no "invalid clearsig header" messages - - Only gpg (GnuPG) --verify output will be used as criteria for acceptance (not provided by you) - - Kleopatra, GPGMail, Enigmail, and other frontends or third-party software will not used as criteria. - I and my peers must verify it personally before payment - - this will depend soley on the output of GPG (GnuPG) on our systems. - - peers will import the key listed below before verification - - multiple people will verify to ensure the results are consistent, fair, and documented. - Must use a version of the GPG tool updated within the last year or so. - Must have a signature time within the current year - Must return "Good Signature"/ GOODSIG, - Must use KeyID 6D854CD7933322A601C3286D181F01E57A35090F (will show as "RSA key 181F01E57A35090F"). - The message must be in Clearsign text format and surrounded by the correct container lines (see Refer section) - Must not require importing additional keys or other unreasonable setup. What to provide: - - A message with sufficiently unique text that has not been published before in Clearsigned format (see Comments) - - Some sort of contact information of your discretion so we can pay the correct person. - - Your verification (OPTIONAL - will not be used as criteria for acceptance) - - Short explanation of what you did (OPTIONAL - will not be used as criteria for acceptance) Refer to: - https://gnupg.org/download/index.html - http://pgp.mit.edu/pks/lookup?op=get&search=0x181F01E57A35090F - https://www.gnupg.org/gph/en/manual/x135.html#AEN152 (Clearsigned text) - https://tools.ietf.org/html/rfc4880 Contact: - #cicadasolvers channel on Freenode IRC - @crashdemons#0916 by Discord Comments: - So-called "Duplicate Key" examples with the same keyid (see above) are preferred since many have claimed these exist / can be created. (No 'duplicate keys' are known to exist) - However, abusing new GPG exploits will be accepted (and immediately responsibly disclosed to GPG). - Warnings related to the key being trusted during peer verification may be overlooked SO LONG AS the key is the one listed above (this is because not all of my peers have marked the key with 'trust' yet) - The following text is recommended as your message (with newlines) but not necessarily required. " This is My Cicada Example Message for key 181F01E57A35090F "