added changed suggested by meaz in #610 issue ticket
This commit is contained in:
parent
4fa242ae93
commit
e3797f2657
GPG Key ID:
0EBC7B9848D04031
|
|
@ -8,13 +8,13 @@ taxonomy:
|
|||
|
||||
---
|
||||
|
||||
Most important part of encryption is to understand it's basic concept. This basic understanding of how encryption works will help you avoid confusion, issues and provide a more clear picture of what is happening and how to apply it to your daily communication.
|
||||
Most important part of encryption is to understand its basic concept. This basic understanding of how encryption works will help you avoid confusion, issues and provide a more clear picture of what is happening and how to apply it to your daily communication.
|
||||
|
||||
Lacre does require you to understand the basics in order to use it without compromising security. It is built in a way that hides the encryption from users. However, it is better to understand what is happening. It empowers us all when realizing that there is no magic trickery, the concept is simple and you are in the front seat.
|
||||
|
||||
<iframe width="560" height="315" src="https://www.youtube.com/embed/E5FEqGYLL0o" title="YouTube video player" frameborder="0" allow="accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture" allowfullscreen></iframe>
|
||||
|
||||
GPG (GNU Privacy Guard) is one of the most popular encryption methods to secure email correspondance and files between people. GnuPG uses asymmetric encryption technology. It means you create two types of keys. Secret and public key. Public key is used by others to encrypt messages to you. You can (and should) share that key with everyone you want to secure your communication with. There are even special public servers called "keyservers" where you can post your key so that anyone could obtain it. The second key is your Secret (private) key. This key is used to decrypt emails addressed to you. Loosing or sharing this key with others will result in either loosing access to your emails or allowing others to read your private emails. It is therefore essential to never share this key with anyone and to keep a backup copy of it.
|
||||
GPG (GNU Privacy Guard) is one of the most popular encryption methods to secure email correspondance and files between people. GnuPG uses asymmetric encryption technology. It means you create two types of keys. Secret and public key. Public key is used by others to encrypt messages to you. You can (and should) share that key with everyone you want to secure your communication with. There are even special public servers called "keyservers" where you can post your key so that anyone could obtain it. The second key is your secret (private) key. This key is used to decrypt emails addressed to you. Loosing or sharing this key with others will result in either loosing access to your emails or allowing others to read your private emails. It is therefore essential to never share this key with anyone and to keep a backup copy of it.
|
||||
|
||||
To create new pair of keys, please follow our tutorial pages at [Creating Keypairs](/user_tutorials/creating_keypair) Once you have your key pair created, it's time to start encrypting your emails. Here is a scenario:
|
||||
|
||||
|
|
@ -22,7 +22,7 @@ Alice wants to write an email to Bob.
|
|||
Both don't want the whole world to be able to read it.
|
||||
So Alice will "hide" the email in an envelope closed with a lock that only Bob can open.
|
||||
|
||||
The problem is that Bob can't send the key to his lock to Alice through email, otherwise, any one could use it to open his lock and read everything inside the envelope.
|
||||
The problem is that Bob can't send the key to his lock to Alice through email, otherwise, anyone could use it to open his lock and read everything inside the envelope.
|
||||
|
||||
So here is the solution.
|
||||
|
||||
|
|
|
|||
|
|
@ -19,7 +19,7 @@ So if you haven’t already, install Mailveloppe add-on in your web browser:
|
|||
[Mailvelope for Microsoft Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc?target=_blank)
|
||||
|
||||
|
||||
To create new keypair for your email you need to:
|
||||
To create a new keypair for your email you need to:
|
||||
|
||||
1. open your web browser then click on the Mailvelope icon in the top right corner of your browser to start setting up your encryption keys. Choose "Keyring".
|
||||
|
||||
|
|
@ -35,11 +35,11 @@ To create new keypair for your email you need to:
|
|||
|
||||
- enter your email address that you want to use with the key. For Lacre, It should be the address you want to use with Lacre.
|
||||
|
||||
- you can change additional settings by clicking on "Advanced", like changing key type to Ecliptic Curve as it is considered more secure and efficient then RSA keys.
|
||||
- you can change additional settings by clicking on "Advanced", like changing key type to Ecliptic Curve as it is considered more secure and efficient than RSA keys.
|
||||
|
||||
- enter a password for your private key. You'll be asked for it when you want to decrypt an email with your private key.
|
||||
|
||||
- Uncheck the "Upload public key to Mailvelope Key Server" box, unless you want it to be published online (it allows people to find your public key and send you encrypted emails, even if you didn't directly send you public key to them).
|
||||
- Uncheck the "Upload public key to Mailvelope Key Server" box, unless you want it to be published online (it allows people to find your public key and send you encrypted emails, even if you didn't directly send your public key to them).
|
||||
|
||||
|
||||
|
||||
|
|
|
|||
|
|
@ -30,9 +30,9 @@ To create a new keypair for your email you need to:
|
|||
|
||||
|
||||
|
||||
We recommend changing key type to Ecliptic Curve as it is considered more secure and efficient then RSA keys.
|
||||
We recommend changing key type to Ecliptic Curve as it is considered more secure and efficient than RSA keys.
|
||||
|
||||
5. Next, confirm your choices and read the warning carefully. Key generation depending on entrophy generated by your comuter at the time of work may take a whie. Do not close thunderbird and let it do it's work even if it may seem "stuck".
|
||||
5. Next, confirm your choices and read the warning carefully. Key generation depending on entrophy generated by your computer at the time of work it may take a whie. Do not close thunderbird and let it do it's work even if it may seem "stuck".
|
||||
|
||||
6. Congratulations! Your new encryption key is created and ready to be used.
|
||||
|
||||
|
|
|
|||
|
|
@ -12,13 +12,13 @@ Creating a PGP keys on your Android device requires you to install additional so
|
|||
|
||||
So if you haven’t already, install OpenKeychain from [F-droid](https://f-droid.org/en/packages/org.sufficientlysecure.keychain/?target=_blank) or [Google Playstore](https://play.google.com/store/apps/details?id=org.sufficientlysecure.keychain?target=_blank)
|
||||
|
||||
To create new keypair for your email you need to:
|
||||
To create a new keypair for your email you need to:
|
||||
|
||||
1. Open OpenKeychain and select “CREATE MY KEY” on start page.
|
||||
|
||||
|
||||
|
||||
(If u already have keys you can get there also via the hamburger menu (three bars) at the top right → manage my keys)
|
||||
(If you already have keys you can get there also via the hamburger menu (three bars) at the top right → manage my keys)
|
||||
|
||||
2. Choose a name to associate with the key
|
||||
|
||||
|
|
@ -53,7 +53,7 @@ Now click “SAVE BACKUP” and save on location of your choice.
|
|||
With proper end to end encryption, you are responsible yourself for your data security. So the only person to blame for lost key or password is you! With great security comes great responsibility.
|
||||
|
||||
|
||||
Final step will be to enable PGP within email client. Only few email clients on android support that. In this tutorial I’ll show you how to do it with K9.
|
||||
Final step will be to enable PGP within email client. Only few email clients on android support that. In this tutorial we’ll show you how to do it with K9.
|
||||
If you are not using it already, install K9 from [F-Droid](https://f-droid.org/app/com.fsck.k9?target=_blank) or [Google Playstore](https://play.google.com/store/apps/details?id=com.fsck.k9?target=_blank)
|
||||
|
||||
1. Start K9, open the drawer and go to “Settings”.
|
||||
|
|
|
|||
|
|
@ -26,7 +26,7 @@ pagination: true
|
|||
|
||||
## Creating Keypairs
|
||||
|
||||
**To be able to decrypt your mailbox, you have to create youe set of keys. The following section will guide you through the process.**
|
||||
**To be able to decrypt your mailbox, you have to create your set of keys. The following section will guide you through the process.**
|
||||
|
||||
[Webmail - Mailvelope](webmail)
|
||||
|
||||
|
|
|
|||
|
|
@ -7,16 +7,16 @@ taxonomy:
|
|||
body_classes: 'single single-post'
|
||||
|
||||
---
|
||||
Exporting your public key using thunderbird is a very easy process. If you Have followed our tutorial on creating a key pair, or have imported your old keypair to thunderbird, just follow these simple steps to export your public key.
|
||||
Exporting your public key using thunderbird is a very easy process. If you have followed our tutorial on creating a key pair, or have imported your old keypair to thunderbird, just follow these simple steps to export your public key.
|
||||
|
||||
1. Open up your account settings and head over to "End 2 end Ecryption" Section.
|
||||
|
||||
|
||||
|
||||
2. From the overview select key you want to export
|
||||
2. From the overview select the key you want to export
|
||||
|
||||
|
||||
|
||||
As you can see you can decide to either save the exported public key to a file or "Copy" the key to your Clipboard. You can do either one, but if you don't plan on uploading your public key directly, it's better to export to a file.
|
||||
|
||||
Exported public key can be then uploaded to Lacre.
|
||||
Exported public key can be then uploaded to Lacre Keyserver.
|
||||
|
|
|
|||
|
|
@ -14,7 +14,7 @@ Exporting your public key to upload it to lacre.io is super easy.
|
|||
|
||||
|
||||
|
||||
2. From the overview click on the "copy"-Symbol.
|
||||
2. From the overview click on the "copy"~~-~~Symbol.
|
||||
|
||||
|
||||
|
||||
|
|
|
|||
|
|
@ -26,7 +26,7 @@ pagination: true
|
|||
|
||||
##Exporting Keypair
|
||||
|
||||
**In order to upload your key to Lacre's key server, you will first need to export it. See in this section how to do it on your device.**
|
||||
**In order to upload your key to Lacre's key server, you will first need to export it. See in this section how to do it from your device.**
|
||||
|
||||
[Webmail - Mailvelope](webmail)
|
||||
|
||||
|
|
|
|||
|
|
@ -31,11 +31,11 @@ Uploading a public key to the Lacre Key-Server is a fairly easy process:
|
|||
7. All done. From now on you will receive all emails to your inbox encrypted.
|
||||
|
||||
|
||||
Change key on Lacre Key-Server:
|
||||
## Change key on Lacre Key-Server:
|
||||
|
||||
→ upload your new public key the same way as you did on initial setup.
|
||||
|
||||
|
||||
Remove key on Lacre Key-Server:
|
||||
## Remove key on Lacre Key-Server:
|
||||
|
||||
→ same as changing a key, but instead of adding a new key in the "ASCII-armored PGP public key" box, let it empty.
|
||||
|
|
|
|||
|
|
@ -26,7 +26,7 @@ pagination: true
|
|||
|
||||
## User Documentation
|
||||
|
||||
**The following Tutorials will guide you through the process of setting up encryption keys and uploading them to Lacre.**
|
||||
**The following tutorials will guide you through the process of setting up encryption keys and uploading them to Lacre.**
|
||||
|
||||
[Creating Keypairs](creating_keypair)
|
||||
|
||||
|
|
|
|||
Loading…
Reference in New Issue