Gehirn assigns PGP signatures to emails sent by its employees. We may also encrypt and sign customers who have exchanged their public keys with us. You may use this information to encrypt or verify your signature when sending data to us.
If you have information that cannot be sent via our Support Center regarding a Security Incident, Security Vulnerability or other text containing confidential information, you'll need to contact the Gehirn CSIRT (Computer Security Incident Response Team). Please encrypt the confidential information with the following PGP Key and attach your public key to be used for the reply, or send the Key ID and Fingerprint at the same time.
Send your encrypted emails to firstname.lastname@example.org
Our employee's public keys are signed by the root key. If you want to verify the signatures on our employee's emails, download the root key and set up the trust settings, then either download the key ID indicated on the signature from the keyserver or exchange the key with our employee in advance via a secure method. Verify that the key you have obtained is signed by the Gehirn root key. Once the root key has been carefully checked and trusted, the employee key is automatically trusted through the PGP's web of trust mechanism.