|
Size: 975
Comment:
|
Size: 3546
Comment: edited introduction
|
| Deletions are marked like this. | Additions are marked like this. |
| Line 1: | Line 1: |
| = Create you own key pair | ## page was renamed from Gpg4win/Tutorials/CertificateCreation = Create your own key pair |
| Line 5: | Line 6: |
| **under construction** If you want to start with encryption it is necessary to create your own pair of keys so that you have a private and a public key. Sometimes they are also called "certificates" which is a term coming from the encryption via S/M~IME. For many users (and especially those who are unsure) encryption via OpenP~GP is the right way. Since Gpg4win/Kleopatra can handle both the certificates and the keys are called certificates in the program. |
If you want to start with encryption it is necessary to have your own pair of keys so that you have a private and a public key. Maybe you already have one but you need to import it. Then you can follow [[Gpg4win/Tutorials/RetrievePublicKeys#file_import|this section]] as it also works with your own key pair. The other way is to create your key pair and this way is shown in this tutorial. \\ Sometimes the keys are also called "certificates" which is a term coming from the encryption via S/M~IME. For many users (and especially those who are unsure) encryption via OpenP~GP is the right way. Since Gpg4win/Kleopatra can handle both the certificates and the keys are called certificates in the program. |
| Line 20: | Line 21: |
| \\\\ | \\ |
| Line 23: | Line 24: |
| * In the next window enter you name and the email address the new keys will belong to and click on **Create** | * In the next window enter your name and the email address the new keys will belong to. \\\\ {{enter_email_name.png}} \\\\\\ * It is also recommended to set a password so activate the checkbox **Protect the generated key with a passphrase.** **todo: make comment about the advanced questions of key algorithms and size, because many ask this** \\ {{activate_password.png}} \\\\\\ * Click on **Create** \\ {{create_key.png}} \\\\\\ * A small window appears. Here you now have to enter a password/passphrase twice. **todo** How to get a passphrase, link recommendations for random creation. \\\\ {{enter_password.png}} \\\\\\ * Confirm with a click on **OK**. (**todo** Link other recommendations for passphrase handling, not just Please save your password for example with a password manager like Kee~Pass~XC because if you don't know your password you can't decrypt files and messages so you can't read them anymore.) **todo: passphrase in the screenshot must be a lot longer than 10 chars** \\\\ {{confirm_password.png}} \\\\\\ * Now you have two options: ## Click on **Finish** ## Or you go on with the next part of this tutorial (below: //Backup your key pair//) to backup your key pair so you don't forget it later. \\ {{finish_key_creation.png}} \\\\\\ === Backup your key pair **todo** link general recommendation about backups and the section where to backup It's great that you chose to backup your keys now because if you didn't maybe you would forget it and if you loose your keys you can never read messages that were encrypted by these keys again. * Click on the option **Make a Backup Of Your Key Pair...** \\\\ {{choose_backup.png}} \\\\\\ * The file explorer will be opened. Here you can choose a folder where your backup will be saved (The place you save the keys to should be on a different device than you normally use e.g. an external hard drive). Then click on **Save**. \\\\ {{select_location.png}} \\\\\\ * Enter the password/passphrase that you chose when you created the key pair... \\\\ {{enter_password_for_backup.png}} \\\\\\ * ... and click on **OK** \\\\ {{entered_password_for_backup.png}} \\\\\\ * The next window explains that the backup was successfully. Confirm with **OK**. \\\\ {{backup_complete.png}} \\\\\\ \\ **Congratulations! You created and backed up your own key pair.** |
Create your own key pair
This tutorial is for Gpg4win 4.0.3. For new versions this process may differ.
If you want to start with encryption it is necessary to have your own pair of keys so that you have a private and a public key. Maybe you already have one but you need to import it. Then you can follow this section as it also works with your own key pair. The other way is to create your key pair and this way is shown in this tutorial.
Sometimes the keys are also called "certificates" which is a term coming from the encryption via S/MIME. For many users (and especially those who are unsure) encryption via OpenPGP is the right way. Since Gpg4win/Kleopatra can handle both the certificates and the keys are called certificates in the program.
Create the key pair
- Click on File in the menu bar
- Click on New Key Pair... in the menu
- Click on Create a personal OpenPGP key pair
![[ATTACH]](/moin_static1911/gnupg-org-wiki-theme/img/attach.png "[ATTACH]")
- In the next window enter your name and the email address the new keys will belong to.
- It is also recommended to set a password so activate the checkbox Protect the generated key with a passphrase. todo: make comment about the advanced questions of key algorithms and size, because many ask this
- Click on Create
- A small window appears. Here you now have to enter a password/passphrase twice. todo How to get a passphrase, link recommendations for random creation.
- Confirm with a click on OK. (todo Link other recommendations for passphrase handling, not just Please save your password for example with a password manager like KeePassXC because if you don't know your password you can't decrypt files and messages so you can't read them anymore.) todo: passphrase in the screenshot must be a lot longer than 10 chars
- Now you have two options:
- Click on Finish
- Or you go on with the next part of this tutorial (below: Backup your key pair) to backup your key pair so you don't forget it later.
![[ATTACH]](/Gpg4win/Tutorials/KeyPairCreation?action=AttachFile&do=upload_form&ticket=00681696e7.48fc393a8249694ba73ceb6f5baf5c73a391ea47&target=choose_key_type.png "[ATTACH]"){kind=small}
![[ATTACH]](/Gpg4win/Tutorials/KeyPairCreation?action=AttachFile&do=upload_form&ticket=00681696e7.48fc393a8249694ba73ceb6f5baf5c73a391ea47&target=activate_password.png "[ATTACH]"){kind=small}
Backup your key pair
todo link general recommendation about backups and the section where to backup
It's great that you chose to backup your keys now because if you didn't maybe you would forget it and if you loose your keys you can never read messages that were encrypted by these keys again.
- Click on the option Make a Backup Of Your Key Pair...
- The file explorer will be opened. Here you can choose a folder where your backup will be saved (The place you save the keys to should be on a different device than you normally use e.g. an external hard drive). Then click on Save.
- Enter the password/passphrase that you chose when you created the key pair...
- ... and click on OK
- The next window explains that the backup was successfully. Confirm with OK.
Congratulations! You created and backed up your own key pair.