Using GPG to Safely Exchange Data Securely (GUI)
- Fred Smith (Deactivated)
- Troy Sankey
GnuPG is a complete and free implementation of the OpenPGP standard as defined by RFC4880 (also known as PGP). GnuPG allows to encrypt and sign your data and communication, features a versatile key management system as well as access modules for all kinds of public key directories.
Steps for getting started with GPG
Installing GPG software
Install the software for the OS where you will be exchanging secure email. Webmail (Google apps, gmail, yahoo, etc) users should use the "Web Browser" plugin Mailvelope.
- Windows (Microsoft Outlook): http://www.gpg4win.org/
- Mac (Apple Mail, Microsoft Entourage): https://gpgtools.org/
- Linux CLI: no action needed. gpg is the standard utility for verifying software packages, so it comes with every major GNU/Linux distribution.
- Web Browser: https://www.mailvelope.com/
Generating a Key
Each GPG user has a unique cryptographic key pair, which includes a public version and a private version.
- When a message is encrypted using a user's public key, only the person with a copy of the private key can decrypt that message. This ensures that an encrypted message cannot be read by someone else.
- When a message is encrypted with a user's private key, other people can verify that sender had the private key by decrypting the message with the public key. this is called "signing" a message.
To send and receive secure messages using GPG, you must generate your key pair. Software specific documentation:
- Mac users: https://gpgtools.tenderapp.com/kb/how-to/first-steps-where-do-i-start-where-do-i-begin-setup-gpgtools-create-a-new-key-your-first-encrypted-mail
Linux users: Generate and Share a Public Key
Windows users: http://gpg4win.de/handbuecher/novices_6.html
Web Browser: https://www.mailvelope.com/en/help#keys
Publishing your Key
Most GPG implementations allow you to easily publish your public key on a key server. This will allow people who know your email address to find your key and send you encrypted email. The most popular key server at EdX is pgp.mit.edu, but there are many others.
- Mac users: https://gpgtools.tenderapp.com/kb/gpg-keychain-faq/how-do-i-find-my-public-key-how-do-i-share-my-public-key
- Linux users: Generate and Share a Public Key
- Windows users: http://gpg4win.de/handbuecher/novices_8.html
- Web Browser: Copy your public key out of the "Display Keys"/"Export" dialog. Paste it into the form at https://pgp.mit.edu/