https://www.mediawiki.org/wiki/Wikimedia_Security_Team/Goals_201516#Q1_.28July-Sept_2015.29
- - establish WMF identity signing key, sign all legal team's keys and publish signatures to keyserver
- - establish revocation process for signed keys
- - (stretch) distribute identity key to a small team, to ensure ongoing signing and revoking
- - document process gaps and team learnings