PGP Encryption and Signing

Slide 1

Slide 1 text

PGP Encryption and Key Signing

Slide 2

Slide 2 text

PGP stands for Pretty Good Privacy. It is a trademarked program for encryption and decryption.

Slide 3

Slide 3 text

OpenPGP is the standard for PGP encryption. PGP and other programs comply with this standard.

Slide 4

Slide 4 text

Gnu Privacy Guard is an open source implementation of OpenPGP. It is abbreviated as GPG.

Slide 5

Slide 5 text

What are you trying to hide? nothing.

Slide 6

Slide 6 text

Aspects of Security Privacy Integrity Authenticity

Slide 7

Slide 7 text

Nobody except the intended recipient can read the contents of the message. Privacy

Slide 8

Slide 8 text

The message that is delivered is the exact message that was sent. integrity

Slide 9

Slide 9 text

The sender and receiver can be sure of the other’s identity. authenticity

Slide 10

Slide 10 text

PGP security features Encrypt/Decrypt messages Sign and verify messages Validate and sign keys

Slide 11

Slide 11 text

encryption basics Symmetric Asymmetric

Slide 12

Slide 12 text

Both parties use the same secret to encrypt and decrypt the message. Symmetric

Slide 13

Slide 13 text

One half of a key pair is used for encrypting and the corresponding other half for decryption. Asymmetric

Slide 14

Slide 14 text

Symmetric Fast Not resource intensive Useful for messages of various sizes Requires sharing the secret password

Slide 15

Slide 15 text

Symmetric Does not requiring sharing the whole key Can be used for both encryption and signing Very resource intensive Useful on only small messages

Slide 16

Slide 16 text

PGP Encryption Symmetric Asymmetric +

Slide 17

Slide 17 text

PGP encryption uses symmetric encryption to encrypt the data using a generated secret key.

Slide 18

Slide 18 text

It uses asymmetric encryption to encrypt the generated secret key using the recipient’s public key.

Slide 19

Slide 19 text

http://en.wikipedia.org/wiki/Pretty_Good_Privacy

Slide 20

Slide 20 text

Use Cases Email Encryption Document Signing Commit Signing Password Sharing File Encryption

Slide 21

Slide 21 text

Email Encryption

Slide 22

Slide 22 text

Git Commit Signing

Slide 23

Slide 23 text

Shared Password Encryption

Slide 24

Slide 24 text

Next Steps Generate a key pair if you do not have one or have forgotten the passphrase. ! Distribute your public key. Consider sending it to a public key server. ! Verify keys with people here. Sign and distribute these keys. ! Use your key.

Slide 25

Slide 25 text

No content

Slide 26

Slide 26 text

Resources http://carouth.com/blog/2014/05/04/keysigning-at-php-tek-2014/ http://www.phildev.net/pgp/gpgkeygen.html https://alexcabal.com/creating-the-perfect-gpg-keypair/ http://carouth.com/blog/2014/05/25/signing-pgp-keys/ http://openpgp.quelltextlich.at/slip.html