The content of this post is solely the responsibility of the author. LevelBlue does not adopt or endorse any of the views, positions, or information provided by the author in this article.
In today’s world, electronic mails (e-mails) serve as a medium of both official and personal correspondence. With sensitive information being shared online, it’s essential to secure your emails. Pretty Good Privacy (PGP), a robust encryption program, offers a reliable solution for securing the contents of your emails. Developed by Phil Zimmermann in 1991, PGP utilizes public-key cryptography to ensure both confidentiality and authenticity in email exchanges.
PGP uses a pair of keys consisting of a public key and a private key. The public key is like your digital address that you share with other users. Anyone with your public key can send you encrypted messages. However, they cannot read messages encrypted with your private key. The private key is like the key to your mailbox and should be kept secure. You use it to decrypt messages sent to you with your public key. To use PGP, you need a pair of keys: a public key and a private key. Here’s how to generate them:
1. Install GnuPG: First, install GnuPG, a free implementation of the OpenPGP standard. You can download it from GnuPG’s official website.
2. Generate Key Pair: Open your terminal and type the following command: gpg –full-generate-key Follow the prompts to create your key pair. Choose your preferred encryption method, key size (at least 2048 bits), and validity period.
3. Backup Your Keys: Once generated, back up your keys. Use the following commands to export them:
gpg –export -a “Your Name” > public.key
gpg –export-secret-key -a “Your Name” > private.key
Distributing Your Public Key
To receive encrypted emails, share your public key:
1. Upload to a Key Server:
gpg –send-keys your-key-id
Replace your-key-id with your actual key ID. This makes your key publicly accessible.
2. Direct sharing: Alternatively, you can send your public key file (public.key) to your contacts directly.
Encrypting and Decrypting Emails
With your key pair ready and public key shared, you can start sending and receiving encrypted emails:
Encrypting an Email:
Import the Recipient’s Public Key: First, get the recipient’s public key. Import it with this command:
gpg –import recipient-public.key
Encrypt the Message: Use the recipient’s public key to encrypt your message:
gpg –encrypt –armor –recipient recipient-email@example.com message.txt –
Replace “recipient-email@example.com” with the email address of the receiving person/entity and “message.txt” with your message file. This creates an encrypted file (usually with a .asc extension) to attach to your email.
Decrypting an Email:
Now as you have shared your public key with your target users, they will be able to send you an encrypted email using PGP(for this to work they also need to have PGP insalled). When you receive an encrypted email (typically a .asc file), decrypt it with your private key:
gpg –decrypt encrypted-message.asc
Replace “encrypted-message.asc” with the file name of the encrypted attachment. You will need to enter your private key passphrase.
Using PGP with Email Clients
While the command-line method works, it can be complicated. Thankfully, many email clients have PGP plugins to make this easier. Here are two most preferred or known:
Thunderbird with Enigmail:
Installation: Download and install Mozilla Thunderbird, a free email client. Then, install the Enigmail add-on
Configuration: Open Thunderbird, go to Enigmail settings, and import or create your PGP key pair. Enigmail integrates PGP into Thunderbird, making encryption simple.
Outlook with Gpg4win:
Installation: Download and install Gpg4win, which includes GnuPG and plugins for Outlook.
Configuration: Set up your PGP key pair in Gpg4win, then use the Outlook plugin to encrypt your emails. In addition to OpenPGP Gpg4win also supports S/MIME (X.509)
Benefits of Email Client Integrations
Ease of Use: These integrations make encryption and decryption easy within your email client.
Automatic Key Management: They handle key tasks like importing keys and managing validity of the keys.
User-Friendly Interface: The visual interface simplifies the process. For webmail services like Gmail or Yahoo Mail, browser extensions like mailvelope allows using OpenPGP for encrypting emails and ease of use.
More Stories
Cybersecurity Skills Gap Leaves Cloud Environments Vulnerable
A new report by Check Point Software highlights a significant increase in cloud security incidents, largely due to a lack...
Going for Gold: HSBC Approves Quantum-Safe Technology for Tokenized Bullions
The bank giant and Quantinuum trialed the first application of quantum-secure technology for buying and selling tokenized physical gold Read...
This Windows PowerShell Phish Has Scary Potential
Many GitHub users this week received a novel phishing email warning of critical security holes in their code. Those who...
Infostealers Cause Surge in Ransomware Attacks, Just One in Three Recover Data
Infostealer malware and digital identity exposure behind rise in ransomware, researchers find Read More
FBI Shuts Down Chinese Botnet
The FBI has shut down a botnet run by Chinese hackers: The botnet malware infected a number of different types...
Western Agencies Warn Risk from Chinese-Controlled Botnet
Cyber and law enforcement agencies across the “Five Eyes” countries issue warning about large-scale botnet linked to Chinese firm and...