blob: be007d972fbac08c3500591c658eb84e1d48ebfb (
plain)
- Trusted e-mail
- Attitude
- -----------
- Please insist to understand!
- PGP
- -----
- Pretty Good Privacy
- Used to sign (and encrypt) digital files, mostly used for emails.
- A digital fingerprint
- A key pair with a public and a private part
- You can have as many keys and indentities as you wish
- Form
- -------
- 1.
- A computer with you in full control
- Free software makes it possible to verify all code
- [DebianParl]
- Full disc encryption
- 2.
- E-mail address
- External email address
- 3.
- Mail list communication
- [List address]
- Create your identity
- --------------------------
- 1. Use a working email account
- 2. Think of a good passphrase
- 3. Use a PGP tool (we use an email plugin)
- 4. Create a new key pair (with default settings)
- 5. Keep your private key secret and share your public key with the World
- Support someone's identity
- ------------------------------------
- 1. Get her public key
- From a key server or on a usb-stick
- Name, email address, public key (last 8-16 digits)
- 2. Verify that the fingerprint of her public key matches the fingerprint of the key you have received
- 3. Sign her public key (with your private key)
- 4. Pass your signature to her
- Send an email or use a PGP server or a USB stick
- Use
- -----
- Your email application handles the signing of your emails
- When you send a signed email, write your passphrase
- When you receive a signed email, write your passphrase
- You can sign other files as well. You can also use your PGP-key for encryption, but that is not the aim of this project*.
- Invalidation
- ---------------
- If your signature has been compromised
- Ask your keyhandlingapplication to invalidate your key
|
