Kleopatra Test Plan

Status: in progress

Introduction

The purpose of this test plan is to ensure Kleopatra works well on all supported operating systems.

Test environment

Choose one combination of the following target platforms supported by Kleopatra.

Operating system:

• Windows Vista (32 or 64bit)
• Windows 7 (32 or 64bit)
• Windows 8 (32 or 64bit)
• Windows 10 (32 or 64bit)

It is recommended to use a clean virtual test environment, e.g. with VirtualBox.

Preconditions

• GnuPG (latest release) Installed
• Kleoptra Installed
• OpenPGP public key (*.asc or *.gpg) and private key (*.asc or *.gpg)
• S/MIME certificate chain (*.pem) and private key (*.p12)

Tests

Testsuite 1: Basic Functions

Testsuite 1.1: Create Certificates (OpenPGP)

1. Choose "File" from MenuBar
2. Click "New Secret Key"
3. Choose "OpenPGP Keypair"
4. Fill in some random information
5. Choose a Passphrase
6. The new Certificate will appear in the overview

Testsuite 1.2: Create Certificate-Request (X.509)

1. Choose "File" from MenuBar
2. Click "New Secret Key"
3. Choose "X.509 Keypair"
4. Fill some random information
5. Choose a Passphrase
6. Save the Certificate Request to file

Testsuite 1.3: Import Certificates (OpenPGP)

1. Choose "File" from MenuBar
2. Click "Import..."
3. Navigate to a previously exported Certificate
4. Click "Open"
5. The imported certificate will appear in the overview

Testsuite 1.4: Import Certificates incl. Trustchain (X.509)

1. Choose "File" from MenuBar
2. Click "Import..."
3. Navigate to a previously exported Certificate
4. Click "Open"
5. The imported certificate will appear in the overview

Testsuite 1.5: Encrypt Files (OpenPGP)

1. Click the Sign/Encrypt Files Button
2. Choose a file within the dialogue
3. Deselect the Sign Option
4. Select an OpenPGP Certificate as Target
5. Click the Sign/Encrypt button
6. An Encrypted File is at the defined Target

Testsuite 1.6: Encrypt Files (X.509)

1. Click the Sign/Encrypt Files Button
2. Choose a file within the dialogue
3. Deselect the Sign Option
4. Select an X.509 Certificate as Target
5. Click the Sign/Encrypt button
6. An Encrypted File is at the defined Target

Testsuite 1.7: Sign Files (OpenPGP)

1. Click the Sign/Encrypt Files Button
2. Choose a file within the dialogue
3. Deselect the Encrypt Option
4. Select an OpenPGP Certificate as Signing Source
5. Click the Sign/Encrypt button
6. A signed File is at the defined Target

Testsuite 1.8: Sign Files (X.509)

1. Click the Sign/Encrypt Files Button
2. Choose a file within the dialogue
3. Deselect the Encrypt Option
4. Select an X.509 Certificate as Signing Source
5. Click the Sign/Encrypt button
6. An signed File is at the defined Target

Testsuite 1.9: Sign & Encrypt Files (OpenPGP)

1. Click the Sign/Encrypt Files Button
2. Choose a file within the dialogue
3. Select an OpenPGP Certificate as Signing Source
4. Click the Sign/Encrypt button
5. A signed and enncrypted File is at the defined Target

Testsuite 1.10: Sign & Encrypt Files (X.509)

1. Click the Sign/Encrypt Files Button
2. Choose a file within the dialogue
3. Select an X.509 Certificate as Signing Source
4. Click the Sign/Encrypt button
5. An signed and enncrypted File is at the defined Target

Testsuite 1.11: Decrypt Files (OpenPGP)

1. Click the Verify/Decrypt Files Button
2. Choose a file encrpyted to a OpenPGP certificate within the dialogue
3. Enter the Passphrase
4. A decrypted File is at the defined Target

Testsuite 1.12: Decrypt Files (X.509)

1. Click the Verify/Decrypt Files Button
2. Choose a file encrpyted to a X.509 certificate within the dialogue
3. Enter the Passphrase
4. A decrypted File is at the defined Target

Testsuite 1.13: Check Signature

1. Click the Verify/Decrypt Files Button
2. Choose a signed File within the dialogue
3. Enter the Passphrase
4. A decrypted File is at the defined Target

Testsuite 1.14: Lookup Key on Server

If no Server is defined, please execute Testsuite 2.13 first.

1. Click on "Lookup on Server"
2. Search for a Name (i.E. "Einstein")
3. Select a Key
4. Click the "Import" button
5. The imported key appears in the "Imported Certificates" Tab

Testsuite 1.15: Export public and private Key

1. Right Click on a Key you created before
2. Click the "Export..." Button
3. Select a Location in the dialogu
4. Click the "Save Button"
5. The eported Key is at the choosen location

Testsuite 1.16: Trust otheres Certificates

1. Rightclick a previously imported public key
2. Select the "Trust" option
3. Select the UIDs you want to Trust
4. Approve, that Fingerprints are checked
5. Select that you want to approve it just for yourself
6. klick the "Approve" button
7. Enter the Passphrase of your Identity
8. Finish the dialogue
9. Rightclick on the previously trusted key
10. Click on Details
11. Check the Trust Level

Testsuite 1.17: Folder Encrypt

1. Click on File in the MenuBar
2. Select the "Sign/Encrypt Folder" Option
3. Select a Folder fron the Dialgue
4. Click the "Sign/Encrypt" Button
5. Enter your Passphrase
6. The encrypted Folder is at the selected Destination

Testsuite 1.18: Change Owner Trust

1. Right click on a imported Public key
2. Select the "Change Ownertrust" option
3. Select one of the given options

Testsuite 2: Advanced Functions

Testsuite 2.1: Revocation Certificates

1. Click on "File" in the MenuBar
2. Select the Import Option
3. Select a Revocation Certificate for an imported Certificate

Testsuite 2.2: Certificate Revocation List

1. Select "Extras" in the MenuBar
2. Choose the "Import Revocation List from File" Option
3. Select the Revocation Certificate List on the File Dialogue

Testsuite 2.3: Check Trust-Chains in WoT

1. Create Two additional OpenPGP Certificates
2. Set the owner-trust with your first certificate on the second certificate
3. Change the Trust with the Second Certificate on the Third
4. Sign with the Second Certificate on the Third
5. Export the Public Key of the second and third key
6. Delete the Second and third key
7. Import the Public Keys of the second and third key
8. Check the Trust on the Third key

Testsuite 2.4: Check TrustLevels in TOFU

Testsuite 2.5: Check Mixed Encryption with X.509 and OpenPGP

1. Select the File Sing/Encrypt Option
2. Select a File from the File Dialogue
3. Deselect the Sign Option
4. Select two Recipients, one OpenPGP and X.509 Certificate
5. Click the Sign/Encrypt Button

Testsuite 2.6: Check GnuPG-Tar Encryption

1. Click on File in the MenuBar
2. Select the "Sign/Encrypt Folder" Option
3. Select a Folder fron the Dialgue
4. Click the "Sign/Encrypt" Button
5. Enter your Passphrase
6. The encrypted Folder is at the selected Destination

Testsuite 2.7: Change Certificate Server for X.509

Testsuite 2.8: Change Validity

Testsuite 2.9: Export Trustchain

Testsuite 2.10: Check Certificate Details

Testsuite 2.11: add UID to Key

Testsuite 2.12: create Certificate using Brainpool

Testsuite 2.13: add Catalogue Service

1. Select Preference in MenuBar
2. Click the Kleopatra preferences
3. Click on "New" in the Certificate Server dialogue
4. Approve the added Server

Testsuite 3: Interoperability

Testsuite 3.1: Check Integrity of Downloaded Files with Signatures

Testsuite 3.2: Decrypt File that was encrypted under Linux (OpenPGP)

Testsuite 3.3: Decrypt File that was encrypted under Linux (X.509)

Testsuite 3.4: Check Signature on File that was signed under linux (OpenPGP)

Testsuite 3.5: Check Signature on File that was signed under linux (X.509)

Testsuite 3.6: Verify Checksums

Testsuite 4: Kleoptra Smartcard Support

Testsuite 4.1: Initialize OpenPGP Smartcard

Testsuite 4.2: Use OpenPGP Smartcard for Encryption (OpenPGP 2.1)

Testsuite 4.3: Use OpenPGP Smartcard for Signing

Testsuite 4.4: Use X.509 Smartcard for Encryption (NetKey Card)

Testsuite 4.5: Use X.509 Smartcard for Signing (NetKey Card)

Testsuite 4.6: Use X.509 Smartcard for Trusted Signing (NetKey Card)