|
|
1. Introduction
|
|
|
2. What is Encryption?
|
|
|
3. Where can I download PGP?
|
|
|
4. How do I Encrypt
|
|
|
5. How do I Decrypt?
|
|
|
6. Secure EMail
|
|
|
7. Public/Private Keys
|
|
|
8. Resources
|
1. Introduction:-
This is a beginner's
guide to using PGP. To illustrate the encryption procedures the Network Associates
version of PGP will be used. Its accessible gui makes grasping the concepts of PGP
easier for beginners. This tutorial is not a substitute for the real manuals included
with PGP. Most people will find that the manuals cover all the points in this article and
more. PGP is widely recognized as the most secure and reliable program for encryption
and digital signatures. You don't need to be a rocket scientist to use it.
2. What is encryption?
So what is encryption? Most simply put, encryption is a way to make any data coded
so that only the intended recipients can view the data. Caesar used a basic form of
encryption when sending messages to troops. Every "a" in his message was
written as a "c", every "b" became a "d". This way, if the message "Attack
at noon." had been intercepted by an enemy all they would see would be
"Cvvcem cv pqqp." This method worked well for awhile, but soon the
enemy discovered the code. Caesar had to constantly change codes and
develop new systems of encryption. Encryption today has advanced and by using
extremely large numbers (1's followed by several hundred zeros) and things like
advanced factoring techniques, people can use products that encrypt files with much
better methods than just simple character-shifts. Today encryption usually
distinguishes between conventional type encryption i.e. Caesar style ciphers and
encryption using public/private keys. PGP, offers great encryption in several different
forms. PGP, which stands for Pretty Good Privacy, not only allows you to just encrypt
text, you can also encrypt pictures, sound files, movies, and even a whole hard drive.
We'll focus on conventional file based encryption in this introductory article.
3. Where can I download PGP?:
Step one is to download PGP. You can get the "official" Network Associates PGP from
MIT or PGP International. Normally programs such as PGP
use high levels of encryption
and the United States government places restrictions on who can download
these files. You should check on the website before you break
international laws, but don't worry, it will clearly state if you can or
cannot download the file.
PGP is free for non-commercial use, and no registration is required. PGP version 7.x is
also available. Some people do not recommend using it since they consider it to be
just a suite of VPN and network security tools that happens to include a copy of PGP
which Network Associates use for its marketing value.
After you download PGP, you will need a zip utility to unpack it with; winzip is fine for this purpose
When you run the program that installs PGP on your computer, select "default" for
almost everything, but read all the text boxes: When the installer asks you which
components you want, *DO NOT* install PGP Net. PGP Net is for encrypted peer to
peer networking; if you don't know how to set up a VPN, you have no use for PGP
Net. Also *don't* install the "plug-ins" for the various mail software; PGP is already
easy to use, without adding this extra software. All you need is PGP itself and the
documentation files that come with it.
4. How do I encrypt :
Once you have PGP installed on your computer (and you've restarted), it will put an
icon in
your system tray. A menu option named PGPtools, offers all the individual functions
of
PGP-- encrypting, decrypting, making signatures, and verifying signatures-- these
can be
done by clicking on this icon and selecting the option you want. The PGPkeys utility,
which allows you to manage your collection of PGP keys, is also started from the
system
tray icon.
To encrypt a file first select the "PGPtools" menu option from the system tray.
A window will pop up named "PGPtools",
Now you can either drag your file onto the "Encrypt" icon situated on the PGPtools
window
or proceed as follows. Click on the "Closed Padlock Icon" 2nd from the left:-
Once you select your chosen file, the following Key Selection Dialog will be displayed.
Since we aren't going to be sending messages to to any of the people in the list,
we need to click on the "Conventional Encryption" checkbox. Next you will be asked
to enter the password
you
want to encrypt the file with, to decrypt the file all you have to know is the
password.
You can ignore most of the other options in this window, they are advanced things
you
don't want to bother with yet.
Now you need to select a passphrase, or password, to encrypt the file with. As you
type, you will notice that a slider bar will move across the screen indicating the
relative passphrase quality. More characters, or mixing characters with numbers and
special characters, will increase the security. You can use just about any character
you can think of, from spaces to dollar signs, even those extended characters you
can create by pressing the "option" key on your keyboard while typing. A minimum of
8 characters is recommendedOnce you have decided upon a passphrase, you
must type it into the confirmation window. The two windows have to match exactly
or your file will not encrypt. Don't forget your passphrase!!! Write it down !!! Once
done click "OK".
If everything goes correctly, you'll see a progress window. Once it's done
working
an encrypted file will be created on your hard drive. Encrypted files have a .pgp
filename extension and have a PGP icon. Should you open the file in a text editor
all you will see is junk. This junk, called cyphertext, makes it *very* hard for non
authorized people to view your message.
Your pgp encrypted file can now be sent to your friend or if it is too large split into
convenient sized parts, to be recombined at the other end.
5. How do I Decrypt? :
So
you've encrypted a file and now you want to get it back to normal, or
decrypt it. If you double click the file PGPTools will automatically open,
asking you for the passphrase you specified before. You can also drag the
file onto the "Decrypt/Verify" icon within PGPTools.
 The decrypted version of the file will appear
on your desktop.This process is exactly the same if you want to
send your file to a friend. Refer the friend to this instruction manual,
and they will understand how to decrypt the encrypted files you send them.
All they need to do is download PGP and they're set. They also need to
know your passphrase.
6. Secure EMail :-
TO DO
7. Public/Private Keys :-
TO DO
8. Resources :-
|