Difference between revisions of "CryptoParty HOWTO GPG"
Line 1: | Line 1: | ||
= | = Overview = | ||
For an overview of how public key encryption works, this is an excellent explanation: [https://www.youtube.com/watch?&v=3QnD2c4Xovk#%21 Public Key Cryptography: Diffie-Hellman Key Exchange]. | |||
GPG is a tool that does several things, but mostly it is used to generate a public/private key pair and maintains a user's '''keychain''' - the set of public keys from all their contacts. Thunderbird is an email client, and Enigmail is the plug-in that uses GPG for that platform to integrate that into a user's email account. | |||
The first step is to install GPG for your platform. There are instructions for Linux, Mac, and Windows below. After that, the next step is to install Thunderbird, a mail client. You don't need a new email account - this setup works with your existing email account. After confirming that Thunderbird can send/receive email, Enigmail plug-in can be installed and configured to use the GPG on your platform. The next step is generate a public-private key pair, and publish your public key (so others can find your public key to send you encrypted email). Then finally you can send an encrypted email! | |||
* [http://www.gpg4win.org | = Platform-Specific GPG Install = | ||
* [http://www.mozilla.org/en-US/thunderbird | == Linux == | ||
** [https://support.mozilla.org/en-US/kb/automatic-account-configuration | * Install GnuPG | ||
* [https://www.enigmail.net/download | ** On Debian/GNU Linux (Includes Ubuntu): <code>$ apt-get install gnupg</code> | ||
* [https://www.enigmail.net/documentation/quickstart-ch2.php | ** [https://www.gnupg.org/download/index.html On other Linux systems] | ||
== OS X (Macintosh) == | |||
* [https://gpgtools.org Install GPG Suite] | |||
== Windows == | |||
* [http://www.gpg4win.org Install GPG4WIN] | |||
= Thunderbird+Enigmail = | |||
* [http://www.mozilla.org/en-US/thunderbird Install Thunderbird] | |||
** [https://support.mozilla.org/en-US/kb/automatic-account-configuration Configure Thunderbird against your existing email account] | |||
* [https://www.enigmail.net/download Install Enigmail Plug-in] | |||
* [https://www.enigmail.net/documentation/quickstart-ch2.php Create a Public-Private Key Pair] | |||
** Remember your passphrase! | ** Remember your passphrase! | ||
** (Optional) [https://www.enigmail.net/documentation/keyman.php | ** (Optional) [https://www.enigmail.net/documentation/keyman.php Generate a revocation certificate] | ||
** Publish your public key | ** Publish your public key | ||
* [https://www.enigmail.net/documentation/quickstart-ch3.php | * [https://www.enigmail.net/documentation/quickstart-ch3.php Send an Encrypted Email] | ||
** Create a plain-text email to [mailto:emptyset@freesideatlanta.org | ** Create a plain-text email to [mailto:emptyset@freesideatlanta.org emptyset@freesideatlanta.org] | ||
** Lookup the public key for [mailto:emptyset@freesideatlanta.org | ** Lookup the public key for [mailto:emptyset@freesideatlanta.org emptyset@freesideatlanta.org] | ||
** Sign and encrypt the email | ** Sign and encrypt the email | ||
** Send! | ** Send! |
Latest revision as of 17:54, 18 June 2014
Overview
For an overview of how public key encryption works, this is an excellent explanation: Public Key Cryptography: Diffie-Hellman Key Exchange.
GPG is a tool that does several things, but mostly it is used to generate a public/private key pair and maintains a user's keychain - the set of public keys from all their contacts. Thunderbird is an email client, and Enigmail is the plug-in that uses GPG for that platform to integrate that into a user's email account.
The first step is to install GPG for your platform. There are instructions for Linux, Mac, and Windows below. After that, the next step is to install Thunderbird, a mail client. You don't need a new email account - this setup works with your existing email account. After confirming that Thunderbird can send/receive email, Enigmail plug-in can be installed and configured to use the GPG on your platform. The next step is generate a public-private key pair, and publish your public key (so others can find your public key to send you encrypted email). Then finally you can send an encrypted email!
Platform-Specific GPG Install
Linux
- Install GnuPG
- On Debian/GNU Linux (Includes Ubuntu):
$ apt-get install gnupg
- On other Linux systems
- On Debian/GNU Linux (Includes Ubuntu):
OS X (Macintosh)
Windows
Thunderbird+Enigmail
- Install Thunderbird
- Install Enigmail Plug-in
- Create a Public-Private Key Pair
- Remember your passphrase!
- (Optional) Generate a revocation certificate
- Publish your public key
- Send an Encrypted Email
- Create a plain-text email to emptyset@freesideatlanta.org
- Lookup the public key for emptyset@freesideatlanta.org
- Sign and encrypt the email
- Send!