Pgp
-
Is there a site somewhere that fully explains PGP? (I have looked at the PGP site, but I do not find it sufficiently clear.)
I like the idea of being able to send encrypted files to someone else. I gather, though, that the user must have PGP installed as well. Correct?
Apologies for my ignorance.
-
I can tell you what I know and have experienced with PGP if that helps.
But to answer the Core Question does the user require PGP as well? “yes” but PowerArchiver 2013 is PGP compatible so they can have PGP or PowerArchiver.
PGP stands for “Pretty Good Privacy” it has been going since 1991 it known in the industry for Signing , Encrypting and Decrypting texts, files, emails and even entire disk partitions.
The key difference with PGP compared to traditional Encryption is the ability to authorise access to specific files by user.
Known as OpenPGP You basically create a certificate for yourself and maybe a friend. Then both you and your friend have those certificate’s locally.
When encrypting files using that particular certificate it’s coded so without that certificate it can’t be accessed. Even if someone found the password for that certificate they would still need to find that certificate file to open the encrypted document.
You can set expiry date’s on PGP Certificate’s , revoke access. It’s something i’ve used when working for government facilities.
PGP was aquired by Symantic and intergrated into their own Enterprise Security Group back in 2010.
Using PowerArchiver’s PGP is very similar to PGP’s application but significantly less expensive!
-
Here is how PGP works.
You create your own PGP key… you have 2 of them:
1. Public - one that you send to your friends/coworkers
2. Private - one that is “secret” and you keep for yourself.When your friend needs to send you an encrypted file, he adds your public key.
You get the file, open it up, and you need your private key to complete the decryption… without it, you cant decrypt the file.
So it is very secure and at the same time, you dont need to encrypt with passwords, you just add your friend and thats it. It is a lot easier this way and at the same time, more secure.
-
Does the key need to be stored (on either computer) in any particular folder?
BTW, PB was A BIT faster this morning, but still quite slow.
-
you import it into PA Key manager… and export as well… simple doubleclick.
once your friend has it, there is no need to send it again.
-
For the life of me I cannot figure out how to set up OpenPGP to use to communicate with others.
I have looked at your brief instructions above.
I need an “openPGP for dummies.”
E.g., I created a key for myself. when I click on it, it appears there are two keys – I assume one public and one private – but I haven’t a clue which is which.
I tried sending my public key via email (under export). Nothing happens.
And I cannot find a PGP for dummies on line. I think it would be very helpful for you all to add something to the help WIKI. I would then try using this feature.
-
I am by no means a PGP maven but I am already communicating by encrypted emails. And that is what communication is for me.
PA is not the easiest program on which to learn PGP, some OpenPGP key management issues are missing that will styme a new user. They will be added soon.
What email program do you use? If Outlook or Thunderbird, your life will be easier. I am happy to help you get set up emailing and can give you one of my emails with which to practice. I have setup Outlook 2010 and Thunderbird 24 so I a) practice OpenPGP comms and b) get to grips with Thunderbird. I don’t use Skype much, but I think one can share screens and that may be helpful.
Let me know if I can help Socrates.
-
Thanks for the kind offer.
The export via email did not seem to work. Nothing happened.
So do I just email my public key (from off my disk) to anyone with whom I will be sending encrypted emails – and have them to the same in reverse? Then I double click on their key to import it into Open PGP?
Then I ASSUME that when I want to send an encrypted email, I should first encrypt the file with PA, using my PGP key? Or can I encrypt the email itself?
I, too, am using 2010.
Thanks, again,
-
1. Send them your public key via email
2. They send you their public key via email
3. Then encrypt file to OpenPGP by selecting end users email (it should be listed if you imported it from step 2).
4. Send the file via emailand thats it.
After you do it for the first time, it is easier than normal encryption because you dont have to send passwords, so it is much more secure and convenient.
In the future updates, we will add support for sending and retrieving public keys from servers, so you will be able to easily look up public key and send just an url of the key in your emails (usually people put it up as a signature).
We will also add integration with ZTE, but later than above. Above should happen in a month or two max.
-
One other ‘gotcha’. If you send me an email encrypted with my public key, you will never be able to read it to see what you sent - only I can decrypt it. Be sure to send yourself a copy encrypted with YOUR public key.
Socrates, message me here if you need any practice. After you have sent and received a few emails, all should be clear.
DrT
-
One other ‘gotcha’. If you send me an email encrypted with my public key, you will never be able to read it to see what you sent - only I can decrypt it. Be sure to send yourself a copy encrypted with YOUR public key.
Socrates, message me here if you need any practice. After you have sent and received a few emails, all should be clear.
DrT
maybe would be good idea to have “default” pgp profile and always include it into the list by default?
-
I tried to attach the public key . . . no success.
Ideas?
I actually created two keys and tried to email it.
But it still wanted as PW. I thought the benefit of using PGP was avoiding using PW.
-
you have “master” password for your key, so you are the only one that can use it… but it is always the same password as it is only for your key.
so when you receive a file, you will open it with your “master” password as long as sender added you as recipient.
-
create only one key, you dont need multiple keys.
Once you create it, it is stored in the database.click on it, and select Export Public Key… then you can pick name and save it to HDD… you can attach it as any other file.
-
I am by no means a PGP maven but I am already communicating by encrypted emails. And that is what communication is for me.
PA is not the easiest program on which to learn PGP, some OpenPGP key management issues are missing that will styme a new user. They will be added soon.
What email program do you use? If Outlook or Thunderbird, your life will be easier. I am happy to help you get set up emailing and can give you one of my emails with which to practice. I have setup Outlook 2010 and Thunderbird 24 so I a) practice OpenPGP comms and b) get to grips with Thunderbird. I don’t use Skype much, but I think one can share screens and that may be helpful.
Let me know if I can help Socrates.
you know, it would be great if you have some suggestions for PGP improvements… things like looking up openpgp online directory is already going to be added, but what else?
-
The main suggestion would be a ‘PGP for Dummies’ type of guide. For example, the solution to post #10 above is to encrypt any sent emails with one’s own public key too. That way a decryptable copy will be in the sent box. One is not restricted to encrypting with just one key. The best way to experiment with PGP is to send emails to oneself using two different clients and email addresses. Alternatively, finding somebody to partner in experiments.
-
hopefully ldap support will come in next update… that will make it all considerably easier… we will then make tutorials, both written and youtube.
-
What is ‘ldap’?
Anybody can PM me if they want to practice this PGP emailing lark :eek:. I am set up for Outlook 2010 and Thunderbird.
Once you get into it, it is not that difficult.
Cheers
DrT
-
using directory servers to exchange public keys… protocol is called ldap.
-
well, it is actually HKS not ldap as we found out. In any case, after few days we implemented it and it works great. It will be in next official release.
