|
Size: 2804
Comment: updated instruction
|
Size: 3296
Comment: + a few todos
|
| Deletions are marked like this. | Additions are marked like this. |
| Line 1: | Line 1: |
| ## page was renamed from Gpg4win/Tutorials/CertificateCreation | |
| Line 5: | Line 6: |
| If you want to start with encryption it is necessary to create your own pair of keys so that you have a private and a public key. Sometimes they are also called "certificates" which is a term coming from the encryption via S/M~IME. For many users (and especially those who are unsure) encryption via OpenP~GP is the right way. Since Gpg4win/Kleopatra can handle both the certificates and the keys are called certificates in the program. | If you want to start with encryption it is necessary to create **todo or import** your own pair of keys so that you have a private and a public key. Sometimes they are also called "certificates" which is a term coming from the encryption via S/M~IME. For many users (and especially those who are unsure) encryption via OpenP~GP is the right way. Since Gpg4win/Kleopatra can handle both the certificates and the keys are called certificates in the program. |
| Line 25: | Line 26: |
| * It is also recommended to set a password so activate the checkbox **Protect the generated key with a passphrase.** | * It is also recommended to set a password so activate the checkbox **Protect the generated key with a passphrase.** **todo: make comment about the advanced questions of key algorithms and size, because many ask this** |
| Line 33: | Line 34: |
| * A small window appears. Here you now have to enter a password/passphrase twice. | * A small window appears. Here you now have to enter a password/passphrase twice. **todo** How to get a passphrase, link recommendations for random creation. |
| Line 37: | Line 38: |
| * Confirm with a click on **OK**. (Please save your password for example with a password manager like Kee~Pass~XC because if you don't know your password you can't decrypt files and messages so you can't read them anymore.) | * Confirm with a click on **OK**. (**todo** Link other recommendations for passphrase handling, not just Please save your password for example with a password manager like Kee~Pass~XC because if you don't know your password you can't decrypt files and messages so you can't read them anymore.) **todo: passphrase in the screenshot must be a lot longer than 10 chars** |
| Line 49: | Line 50: |
| **todo** link general recommendation about backups and the section where to backup |
Create your own key pair
This tutorial is for Gpg4win 4.0.3. For new versions this process may differ.
If you want to start with encryption it is necessary to create todo or import your own pair of keys so that you have a private and a public key. Sometimes they are also called "certificates" which is a term coming from the encryption via S/MIME. For many users (and especially those who are unsure) encryption via OpenPGP is the right way. Since Gpg4win/Kleopatra can handle both the certificates and the keys are called certificates in the program.
Create the key pair
- Click on File in the menu bar
- Click on New Key Pair... in the menu
- Click on Create a personal OpenPGP key pair
![[ATTACH]](/moin_static1911/gnupg-org-wiki-theme/img/attach.png "[ATTACH]")
- In the next window enter your name and the email address the new keys will belong to.
- It is also recommended to set a password so activate the checkbox Protect the generated key with a passphrase. todo: make comment about the advanced questions of key algorithms and size, because many ask this
- Click on Create
- A small window appears. Here you now have to enter a password/passphrase twice. todo How to get a passphrase, link recommendations for random creation.
- Confirm with a click on OK. (todo Link other recommendations for passphrase handling, not just Please save your password for example with a password manager like KeePassXC because if you don't know your password you can't decrypt files and messages so you can't read them anymore.) todo: passphrase in the screenshot must be a lot longer than 10 chars
- Now you have two options:
- Click on Finish
- Or you go on with the next part of this tutorial (below: Backup your key pair) to backup your key pair so you don't forget it later.
![[ATTACH]](/Gpg4win/Tutorials/KeyPairCreation?action=AttachFile&do=upload_form&ticket=0068169678.4170e5c0d87a14b55903da148c90a4def5295548&target=choose_key_type.png "[ATTACH]"){kind=small}
![[ATTACH]](/Gpg4win/Tutorials/KeyPairCreation?action=AttachFile&do=upload_form&ticket=0068169678.4170e5c0d87a14b55903da148c90a4def5295548&target=activate_password.png "[ATTACH]"){kind=small}
Backup your key pair
todo link general recommendation about backups and the section where to backup
It's great that you chose to backup your keys now because if you didn't maybe you would forget it and if you loose your keys you can never read messages that were encrypted by these keys again.
- Click on the option Make a Backup Of Your Key Pair...
- The file explorer will be opened. Here you can choose a folder where your backup will be saved (The place you save the keys to should be on a different device than you normally use e.g. an external hard drive). Then click on Save.
- Enter the password/passphrase that you chose when you created the key pair...
- ... and click on OK
- The next window explains that the backup was successfully. Confirm with OK.
Congratulations! You created and backed up your own key pair.