Exchanging Files Securely with Gerstc Using gpg4win Public Key Encryptin Overview Visit the fllwing page n Gerstc s website t watch a vide verview f Public Key Encryptin: www.gerstc.cm/???? Initial Setup Dwnlad and Install gpg4win Visit www.gpg4win.rg and click the green dwnlad buttn t dwnlad the free sftware and fllw installatin instructins. During the installatin, make certain that at least the fllwing highlighted cmpnents are selected fr installatin. The ther cmpnents are ptinal. If yu d nt install all f the highlighted cmpnents, certain required features will nt be installed and yu will need t reinstall gpg4win again.
Run Klepatra Klepatra is ne f the cmpnents installed during the gpg4win installatin. Yu will use Klepatra t generate yur public and private keys and save Gerstc s public key and the public keys f thers yu want t send encrypted infrmatin t. Duble-click the desktp icn fr Klepatra t run the sftware: Generate Yur Keys Frm the File menu in Klepatra, select New Certificate t generate yur keys: Select the ptin t Create a persnal OpenPGP key pair (highlighted belw), then click Next:
Enter yur name r cmpany name and email address. This will be used by Gerstc and thers t identify yur public key when sending yu encrypted infrmatin, then click Next: Review the infrmatin yu entered and, if crrect, click the Create Key buttn:
Yu can ptinally enter sme randm input int the text bx and/r mve the windw arund t increase the randmness f the numerical key that is generated: If yu take t lng entering gibberish r mving the windw, the key generatin will time ut and yu may see the fllwing: If this ccurs, simply click the Restart This Wizard buttn t get back t the same step.
Yu will als see the fllwing small dialg where yu must enter the pass phrase fr yur key. Fr the mst secure pass phrase, enter a phrase cnsisting f letters, numbers, symbls and spaces. Then click OK and enter the same phrase again in the cnfirmatin dialg: Remember this pass phrase since yu will need it in rder t decrypt files! If yu have a secure passwrd strage prgram r app, save yur pass phrase there. It is best nt t write yur pass phrase dwn n a PstIt r anywhere it might be discvered. After the keys are generated, the fllwing is displayed. While Klepatra will keep yur keys stred, it is recmmended that yu als make a backup f the keys at this time by clicking the Make a Backup Of Yur Key Pair buttn. This saves yur key infrmatin t files n yur cmputer s that, even if yu remve the Klepatra prgram r use a different public key encryptin prgram, yu can
use the same key pair. If yu create this backup, d nt share it with anyne since it includes yur private key. Fllwing this, yu will see yur generated key listed in Klepatra under the My Certificates tab: Sending Encrypted Files t Gerstc Obtain Gerstc s Public Key In the public key encryptin prcess, the public key encrypts and the private key decrypts. In rder t send an encrypted file t Gerstc, yu will need ur public key. The fllwing blck is Gerstc s public key: -----BEGIN PGP PUBLIC KEY BLOCK----- Versin: GnuPG v2 mqenbft4pqybcadtl94zyjbor9nmbwqfimtgbr5iby1rbipghn+bispgzurof0ui QynG9SwlCDALfSErn5BWkdLcriafQ6d0pQ5OsIEDILJ6Fze65i8Yf9ZrKViSq4y gr1yylsmcitstmegmies0hqn96zd3zxtd8g6wxefluwslqvtqv1agorgxwytsuq Aa/O3rDlP6dy9QXsSGKCjKes2EhxdI0C9+k3FcxL089QFxxXxTl3tYIq55nEKH5 J2RY9RQTamtZlKx/+BT9Z6l2vbqfn6wQQFgSd7UH6fmnK3/5bbzK+Px5ZW+ct1Hs YDBRa7ua/28FDtvPqrYu03bnGCSVdUhBzpWjABEBAAG0IUdlcnN0Y28sIEluYy4g PGthdGllQGdlcnN0Y28uY29tPkBOQQTAQIAIwUCVPimpgIbDwcLCQgHAwIBBhUI AgkKCwQWAgMBAh4BAheAAAJEOKPpPqXZVRAfNAH/04RpItkFMSEAPFfAPSFNdU NRl0OMAFI+/zIZTkAy8gLALTw0yhftRF70rYIXObHsEtHRN8MbU6j3M/Hk695k 53udPBwqHCHru2UzKRJezSbIKBCDJOHJ4fndnNVDwGudbU0ClEHDCP0zAWVp9v5 0bBzWPx9AvDkdbUBsBy3eRzw4ch/xQ6JL8QDUYIpcXOgJt0KPY6xM3dvvSLR9m0P 0k0ibbKlcjzH5URjjjimFiZLRu8Xn/H3TNFQeI0tYl6mS1kRW1cWp3stAFx+4m LAauk8WSLJpHOVXiLBAwTbZYVYcanVMjUvwX1wZdSxvdU0dXaqyYzlKWrUG4= =ieoe -----END PGP PUBLIC KEY BLOCK----- Add Key t Klepatra Save the text f Gerstc s public key t a text file n yur cmputer. The file shuld include the BEGIN and END lines f the key blck. Change the file s extensin t.asc. Fr example, yu might name the Gerstc key file GERSTCO_KEY.ASC. Click Imprt Certificates in the Klepatra tlbar:
In the file dialg, lcate and select the.asc file in which yu just saved Gerstc s public key blck, then click the Open buttn. The fllwing dialg shuld display indicating that ne key was prcessed and imprted: Nw, in the Imprted Certificates tab f Klepatra, Gerstc s key shuld be shwn and can nw be used t encrypt files befre sending t Gerstc:
Encrypt a File In Windws Explrer, lcate the file yu want t encrypt. Right-click the file and select Mre GpgEX ptins, then Encrypt: If yu d nt see Mre GpgEX ptins in the menu, yu likely did nt select the GpgEX cmpnent when installing gpg4win. If this is the case, re-install gpg4win and make certain that GpgEX is selected fr installatin. After selecting the Encrypt ptin, Klepatra s Sign/Encrypt Files dialg will appear. Select the Encrypt ptin, then click Next:
Select Gerstc s key in the list f certificates, then click the Add buttn: Then click the Encrypt buttn:
Yu will see a warning that yu did nt select yur wn key fr encrypting. Yu wuld d that if yu wanted t encrypt the file fr yurself as well, but it is nt necessary fr in this case. Click Cntinue: After a mment, the fllwing dialg shuld display indicating that the encryptin has been cmpleted: Nte that the encrypted versin f the file has the same name as the riginal, but with the.gpg extensin added n. This is the file yu will send t Gerstc. It can be fund in the same flder where the riginal file is lcated. The riginal, decrypted file will still be there as well.
Receiving Encrypted Files frm Gerstc Share Yur Public Key with Gerstc In rder fr Gerstc t send yu secure, encrypted files, we must have yur public key. In Klepatra, select the My Certificates tab and select yur key shwn in the list then click the Exprt Certificates buttn in the tlbar: The default name fr yur exprted public key file will be the unique fingerprint f yur key, hwever this is nt very readable: Change the name f the file t yur cmpany name, but leave the.asc extensin n the end: Nte the flder where the file will be saved, then click the Save buttn. Yu will find the keyfile in the flder yu saved it t. Send this.asc file t Gerstc as an email attachment. This will allw us t encrypt and send files t yu that yu alne will be able t decrypt. Yu nly need t send Gerstc (r anyne else) yur public key ne time unless fr sme reasn yu need t create a new public key fr yurself.
Gerstc Encrypts and Sends Files Gerstc will use yur public key t encrypt the file(s) fr yu and email them t yu, send them n a CD r flash drive, r place them in yur File Exchange accunt n ur secure website. The file will have the.gpg extensin indicating it is an encrypted file. Decrypt Files Dwnlad r cpy the encrypted file t yur cmputer, lcate the file in Windws Explrer and right-click the file. Select Decrypt and verify frm the menu: A dialg will appear with ptins fr decrypting the file. Only the bttm checkbx shuld be checked. Yu may ptinally change the flder where the decrypted file will be placed. By default it will be placed in the same flder with the encrypted file: Click the Decrypt/Verify buttn.
A dialg will appear asking fr yur pass phrase. Since Gerstc encrypted the file using yur public key, yu must nw enter yur private pass phrase in rder t decrypt the file: Enter yur pass phrase, then click the OK buttn. If yu crrectly entered yur private pass phrase, after a mment, a dialg will indicate that the file has been decrypted and saved t the flder.