In this tutorial, you will learn how to use GoAnywhere'sOpen PGPencryption software to encrypt files and sign them.
Open PGP's file encryption tool enables you to both store sensitive information and transmit that information across insecure networks, such as theinternet or email, so that it cannot be read by anyone except the intended recipient.
A public key is used to encrypt a file and verify a signature. A private key is used by the owner to decrypt and to add a digital signature to files.
Encrypting Files with Open PGP
Text
How to encrypt files with Open PGP:
Get your trading partner’s public key to encrypt the file.
Import your trading partner’s public key into a Key Vault.
Use your file transfer tool to create a Project to encrypt the file.
Sign the file with your private key if required.
Confirm that the project was set up correctly before executing.
Continue reading the full tutorial below for more details.
PGP Key Management
Text
Create, import, and export PGP keys through theGoAnywhere Key Management System. Keys are protected and organized into Key Vaults for security access controls. Access the Key Management System through the Encryption drop-down menu.
To get started, let's encrypt a file that we can send to our trading partner. You will need your trading partner's public key to encrypt the file. Your trading partner will use their private key to decrypt the fileonce it is received.
If you have not done so already, import your trading partner's public key into a Key Vault.
Then, create a newProjectand add the PGP Encrypt task to the Project Outline.
On the PGP Encrypt task, select Key Vault for the Key Location and select the appropriate Vault Name from the drop down menu.
Next, enter the Input File location which can be a local file on the GoAnywhere server, a UNC path, an NFS mount, or an SMB/CIFS network server. You will also need to enter the Output File location for the encrypted file. Typically the file extension will end with ".pgp".
While still on the PGP Encrypt task, click on the Add a Public Key option. For the Key Name field, click on the drop-down arrow and select the public key for your trading partner.
Now you have a Project that can be used to encrypt a file to be sent to your trading partner.
Signing a File
Text
Digital signatures allow your trading partner to ensure that you are the true originator of the files. You only need to sign a file if your trading partner requires that you sign your files with your private key. This will embed a digital signature into those files, and your trading partner will use your public key to authenticate your identity when decrypting the files.
To add a signature, expand the Secret Key panel and select the Add a Secret Key option.
On the Key Name field, select your private key and enter the Password of the key. If you do not have a private key, you can create one in the Key Vault.
Executing the Project
Text
To test the Project, click on the Execute button, which will:
Save the Project,
Validate all fields are configured properly (also known as compiling), and
Begin Project execution.
Once complete, you will see messages indicating that the Job completed successfully along with a link to view the Job Log. You can now share that file with your trading partner using FTP, SFTP, email, or another method. You can review the Job Log for more information on what took place.
Text
Not using GoAnywhere MFT yet? Start a free trial and test it out for 30 days.
PGP is generally considered more secure than symmetric encryption. Even if the channel transmitting the files becomes compromised, the private keys and files remain safe. Similarly, they are safe if the channel used to share public keys is compromised.
PGP is generally considered more secure than symmetric encryption. Even if the channel transmitting the files becomes compromised, the private keys and files remain safe. Similarly, they are safe if the channel used to share public keys is compromised.
The PGP Encrypt File activity encrypts a file or an entire folder tree using a PGP key file that you've created. When encrypting an entire folder, the folder tree is preserved from the root folder down. For example, if you encrypt C:\Documents and Settings\Administrator\My Documents\*.
Although OpenPGP's main purpose is end-to-end encrypted email communication, it is also utilized for encrypted messaging and other use cases such as password managers.
OpenPGP is a protocol for encrypting email using public key cryptography. It is based on PGP as originally developed by Phil Zimmermann. The OpenPGP protocol defines standard formats for encrypted messages, signatures, private keys, and certificates for exchanging public keys.
The important thing here is that PGP, OpenPGP, and GnuPG are all related and should work nice together. Depending on the application you use these encryption standards may determine which you choose to use.
Provide the email address of the PGP user in the To field. Compose the email and click Encrypt, Sign & Send on top of the compose window. Provide the passphrase to digitally sign the email using the private key associated with your email address. Click Ok.
What is the most secure way to store my private PGP keys? The safest place to store a PGP key is on your computer. If you put it on a USB device, you might lose it. If you use a password manager, you might forget the password for your password manager or your computer might break then you lose all your passwords.
PGP then creates a session key, which is a one-time-only secret key. This key is a random number generated from the random movements of your mouse and the keystrokes you type. This session key works with a very secure, fast conventional encryption algorithm to encrypt the plaintext; the result is ciphertext.
right-click the file or folder you want to encrypt in Finder and select Services > OpenPGP: Encrypt File.
select recipients to encrypt the message with their public keys - if you only want to encrypt for yourself you need to tick the Add to Recipients option in the Your Key: section.
Introduction: My name is Fr. Dewey Fisher, I am a powerful, open, faithful, combative, spotless, faithful, fair person who loves writing and wants to share my knowledge and understanding with you.
We notice you're using an ad blocker
Without advertising income, we can't keep making this site awesome for you.