Overview
Send information via email encrypted using GnuPG (GNU Privacy Guard) or similar.
Our current public key can be added to your keyring.
GnuPG: Documentation
GnuPG man page.
GnuPG: OpenPGP options.
RHEL 4: Getting Started with Gnu Privacy Guard (page no longer active).
Ubuntu: Gnu Privacy Guard Howto
GnuPG: Installation
Windows
- GNU Privacy Guard for Windows; Outlook Add-in now supports 2016; Kleopatra can be used to manage keys.
- EnigMail Mozilla Thunderbird Add-on,
Installation
Linux: Most distributions already have gnupg installed, otherwise use:
- Centos: yum install gnupg gnupg2
- Ubuntu: apt-get install gnupg
You can confirm that GnuPG is installed from the command line using:
gpg -?
To display supported cyphers:
gpg --version
GnuPG: Creating a key pair
From the command line, you can create a strong key pair on a fast computer using:
gpg --s2k-cipher-algo AES256 --s2k-digest-algo SHA512 --s2k-mode 3 --s2k-count 65011712 --cert-digest-algo SHA512 --gen-key
(1) RSA and RSA (default)
What keysize do you want? (2048) 4096
Key is valid for? (0) 5y
Use a strong passphrase.
It can often take a few minutes to generate the keypair with sufficient entropy.
Notes:
For long term protection, we recommend a keysize of 4096 bits:
Mimimum size accepted are 3248 bit public keys (asymmetric cryptography), providing an equivalent of 128-bits Symetric encryption:
Ecrypt II recommendations
GnuPG: Importing/ exporting public keys:
List keys:
gpg --list-keys
Export public keys:
gpg --armor --export userid
Import public keys:
gpg --import userid
GnuPG: Decrypting a message
gpg --decrypt
Alternatively you can use the Gpg4Win GpgOL (Outlook extension) or Kleopatra.
You can copy & paste the encrypted contents including the PGP header & footer, such as to a new notepad text file, e.g. password.asc
If you are using a different editor such as Wordpad, remember to save as a plain text document.
Links
GnuPG Project home page
- Gnu Privacy Guard (GnuPG) Mini Howto
- Wikipedia: GnuPG
- Wikipedia: Passphrase
The Gpg4win Compendium e.g.:
- GpgOL: Outlook Extension
Related Links
Netro: Generating & Exchanging Passwords more securely
Netro: Security Resources (See password links)
Netro: OpenSSH
Netro: Remote Admin Tools