Author

Topic: [Eng: Tutorial] PGP Signature - Encrypt/Decrypt message - Fingerprint (Read 2437 times)

newbie
Activity: 27
Merit: 4
-----BEGIN PGP MESSAGE-----
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=12yO
-----END PGP MESSAGE-----
sr. member
Activity: 1764
Merit: 373
<------
~

Exercises - Home Work
Go to top

Welcome to the exercises section. Before we start, here is what you wanna do.
1. Create a New Key Pair with the following information

Code:
         Name: ex-
          Email:
i.e:
Code:
         Name: ex-mdayonliner
          Email:
We don't actually want to use our real name and email address for these exercises. The username part with the prefix ex- will help me and others to identify that we are communicating with you.

2. Have your Fingerprint published on the online server. It's gonna help me and other members to access your public key for encrypted communication.

~
Thank you for the tutorial.


Here comes nothing!
Fingerprint:
Code:
B482C8020831ECE3BE6D51DC17ED09A4369CB7AF

No idea if the fingerprint have to be separated with spaces.
legendary
Activity: 2296
Merit: 2892
#SWGT CERTIK Audited
would be great is there youtube video  ;)

PGP is important if you guys still confuse with PGP you can also sign message on bitcoin as well
I see on Youtube there are already several tutorials on how to use PGP encryption messages, e.g .:
- How To Use PGP Encryption | gpg4win Kleopatra Tutorial
- Signing with OpenPGP using Kleopatra
- How to encrypt message with PGP using Kleopatra | Gpg4win ?

So depending on the person's habits, it is more comfortable to learn through written media or videos.
copper member
Activity: 2156
Merit: 983
Part of AOBT - English Translator to Indonesia
thanks for sharing
would be great is there youtube video  Wink

PGP is important if you guys still confuse with PGP you can also sign message on bitcoin as well
legendary
Activity: 2296
Merit: 2892
#SWGT CERTIK Audited
Is there a way to use a hardware wallet with this program?
As far as I know, most hardware wallets don't have the feature to create encrypted messages using PGP.
But there is one device, namely Keyxentic KX 906, which was able to secure email signing and encryption with S/MIME and PGP protocol.

At the moment, I don't know how the reputation and reviews from its users are. -Do With Your Own Risk-
For further information, you may find it here: https://www.keyxentic.com/kx906.

Capabilities

- Multi-modal authentication : Biometric, Public Key, PIN authentication
-  Secure key container
-  Key backup with smart card with multi-modal authentication
-  Hardware cryptographic acceleration(AES 256 Bits) for data and disk(MicroSD Card) encryption
-  Public key infrastructure(PKI) function and X.509 certificate supported
-  Open Authentication Reference Architecture(OATH) one time password(OTP) and OATH challenge-response algorithm(OCRA) supported
-  Fingerprint (ISO 19794-2 / Proprietary format) Match-On-Card supported
Bitcoin wallet supported

Applications

Secure Email signing and encryption with S/MIME and PGP protocol
-  File encryption and data protection
-  PDF Security (signing and encryption)
-  Secure access control with identification and authentication
-  Cryptocurrency transaction

Cryptography

-  RSA 1024/2048
-  ECC 192/256/320 (Multiple Named Curves)
-  ECDSA, NIST and Brainpool Curves
-  ECDH
-  Wrap/Unwrap
-  SHA-1, SHA-2
-  Hardware Crypto-Accelerator(AES256)
legendary
Activity: 1162
Merit: 2025
Leading Crypto Sports Betting & Casino Platform
Is there a way to use a hardware wallet with this program?
legendary
Activity: 2296
Merit: 2892
#SWGT CERTIK Audited
-snip-
I think it would be much more interesting to display the results of what you learned from this thread, such as sending an encrypted message to the OP, creating a PGP Sign message, or verifying the PGP signature. So it's not just saying thank you for appreciating it.
copper member
Activity: 630
Merit: 420
We are Bitcoin!
I am working on updating the topic. The update has been done until the following block.
[--------------still updating below contents ------------- 21/12/2020]
legendary
Activity: 2296
Merit: 2892
#SWGT CERTIK Audited
I Dont know if i did it right tell me if i did something wrong!
-snip-
Can you also add your Public key? So that I can try to verify your PGP signature.

https://i.ibb.co/q55XtDC/not-found.png

Im sure i made every thing as the books said but im still getting this error here and i dont know where is the source of it

any one can help with this ?  :-\
Can you explain in more detail about the “Not found” message? Which stage of the OP tutorial did you have trouble?
member
Activity: 84
Merit: 37


Im sure i made every thing as the books said but im still getting this error here and i dont know where is the source of it

any one can help with this ?  Undecided
legendary
Activity: 3290
Merit: 16489
Thick-Skinned Gang Leader and Golden Feather 2021
Yes, I solved it Smiley
Good!
This interest me, what was you missing in the first place?
I'm not sure, I first tried to "certify for myself", which didn't work. But when I choose "certify for everyone" it worked. I still don't know why, but I gave up (for now) as I got the result I needed.
I don't think I'll be comfortable using PGP until I feel like I know what I'm doing. Just following a tutorial isn't enough to be confident I won't mess it up.
copper member
Activity: 630
Merit: 420
We are Bitcoin!
Maybe a small update in the op about errors from https://sks-keyservers.net and alternative servers to use wouldn't be a bad idea.
I will absolutely do that. I was not active on the forum since I left last year so I had no idea that this topic still had demand. Now since I am back I will start looking at the topics I left and will start updating them. Still I am trying to find the habit I had before, to be online most of the time of the day and have things to say in almost all the topics  Grin
copper member
Activity: 2170
Merit: 1822
Top Crypto Casino
This is the error I get
This is where it was discussed. Credit to Husna QA. I also just noticed that the server in my initial post is down.
Thanks, I used http://keyserver.ubuntu.com and it now works like charm. You won't believe I spent almost 2 hours trying to figure out what I had done wrong.

Maybe a small update in the op about errors from https://sks-keyservers.net and alternative servers to use wouldn't be a bad idea.
copper member
Activity: 630
Merit: 420
We are Bitcoin!
Yes, I solved it Smiley
Good!
This interest me, what was you missing in the first place?
legendary
Activity: 3290
Merit: 16489
Thick-Skinned Gang Leader and Golden Feather 2021
@LoyceV, I am not clear if you were able to solve your problem yet
Yes, I solved it Smiley
copper member
Activity: 630
Merit: 420
We are Bitcoin!
A bit surprise to see the discussion still going on. Thank you Husna QA to keep posting on behalf of me when I was not active in the forum.

@LoyceV, I am not clear if you were able to solve your problem yet, this did not give me a clear idea of your struggling.
And this is the PGP public key:


3. Copy the message and from the try verify it.



Only three times you are interacting with the software. This is not too hard  Smiley



This is the error I get
This is where it was discussed. Credit to Husna QA. I also just noticed that the server in my initial post is down.
copper member
Activity: 2170
Merit: 1822
Top Crypto Casino
         Now open your internet browser and go to
Code:
https://sks-keyservers.net/pks/lookup?op=get&search=0x

On this step I am getting an error once I enter the link into the browser. Is anybody else facing the same problem, or I am just doing something wrong?

This is what i used with the experimental fingerprint I have
Code:
https://sks-keyservers.net/pks/lookup?op=get&search=0xBD59862EB1AB87499ADBA1CACB277B51176DD381

This is the error I get



legendary
Activity: 3290
Merit: 16489
Thick-Skinned Gang Leader and Golden Feather 2021
@Myfe: You're confusing PGP signatures and Bitcoin signed messages.
sr. member
Activity: 476
Merit: 255
Is it possible to create a PGP Signature from any wallet address?

I appreciate the Kleopatra tutorial, but I don't use Kloepatra and I shouldn't have to use a new wallet simply to sign my wallet address...right?

Thanks.
legendary
Activity: 3290
Merit: 16489
Thick-Skinned Gang Leader and Golden Feather 2021
Recently I tried Kleopatra version 3.0.1 on Ubuntu 18.04.5 LTS and managed to verify the message.
Maybe the following methods worked for you too:

- Copy the Public Key into Clipboard.
- At Kleopatra, click the Clipboard button, select Certificate Import.
I have a different version, and it's asking me for my password when I try to Certify Certificate. The ones I tried don't work, or it doesn't even tell me they're wrong, it just says it can't be certified.
But wait, if I certify for everyone instead of just myself, it works!
I'm amazed how complicated verifying a PGP message is, compared to how easy it is to verify a Bitcoin signed message.
legendary
Activity: 2296
Merit: 2892
#SWGT CERTIK Audited
I don't have that option (in Kleopatra, running Linux) under the Tools menu, but it works from the system tray. I have the Certificate imported under "Other Certificates". -snip-
Recently I tried Kleopatra version 3.0.1 on Ubuntu 18.04.5 LTS and managed to verify the message.
Maybe the following methods worked for you too:

- Copy the Public Key into Clipboard.
- At Kleopatra, click the Clipboard button, select Certificate Import.





- The User ID is still not certified; Right-click selects Certify...











- Copy the signed message to Text Editor and save it with the file extension * .asc.



- Click the Decrypt/Verify button and select the * .asc file.



- Here are the results:

legendary
Activity: 3290
Merit: 16489
Thick-Skinned Gang Leader and Golden Feather 2021
Then I tried it at Kleopatra. I tried to import the public key via the Tools menu -> Clipboard -> Certificate Import (I see this method is not in the OP).
I don't have that option (in Kleopatra, running Linux) under the Tools menu, but it works from the system tray. I have the Certificate imported under "Other Certificates".

Quote
Then verify the message
I did this also from the system tray, but get this:
Image loading...
I have no idea how to proceed Sad
I have another message I want to verify (for a potential scam accusation thread), and that one I can't share.
legendary
Activity: 2296
Merit: 2892
#SWGT CERTIK Audited
-snip-
After trying to verify, Kleopatra tells me this:
Quote
Not enough information to check signature validity.
Signed on Thursday, 19 November 2020 10:57:13 CET by [email protected] (Key ID: 0x77379A5D).
The validity of the signature cannot be verified.
There may be a problem importing a public key/fingerprint at Kleopatra.

I was able to verify the message using GPG Keychain on macOS.



Then I tried it at Kleopatra. I tried to import the public key via the Tools menu -> Clipboard -> Certificate Import (I see this method is not in the OP). Then verify the message, and here are the results:

legendary
Activity: 2338
Merit: 10802
There are lies, damned lies and statistics. MTwain
Stumbling myself a fair share on my local board with PGP (no need to see PGP ¿Puedes enviar mensajes cifrados?), so exploring the PGP Newbie avenues myself.

Doing so, I’ve encountered the following issue:
-   I’ve created a new PGP pair, and published my PGP public key (using Kleopatra).

-   @FullNode published a message on a post, using my PGP public key to create his (not sure though which software he used).

-   When I try to decrypt the message, I get:

Code:
El cifrado falló: sin protección de identidad (MDC) ..
Nombre de archivo incrustado: 'text.txt'
Pista:Si este archivo se cifró antes del año 2003 es muy posible que sea ilegítimo. Esto es debido a que la protección de integridad no se usaba ampliamente.

Si usted confía en que el archivo no se manipuló, debería volver a cifrarlo antes de forzar el descifrado.

Destinatario: ddmrddmr (E68F 78F5 AE23 5184)

Pressing "diagnostics" shows:
Code:
gpg: NOTA: el cifrado CAST5 no aparece en las preferencias del receptor
gpg: cifrado con clave de 3072 bits RSA, ID E68F78F5AE235184, creada el 2020-11-19
      "ddmrddmr"
gpg: ATENCIÓN: la intgridad del mensaje no está protegida
gpg: Hint: If this message was created before the year 2003 it is
     likely that this message is legitimate.  This is because back
     then integrity protection was not widely used.
gpg: Use the option '--ignore-mdc-error' to decrypt anyway.
gpg: decryption forced to fail!
The "force cypher" button on Kleopatra does nothing.

The quote’s above are in Spanglish, but the basic issue that does not allow for the message to be decrypted, seems to be that my cypher default algorithm on Kleopatra is "AES", while @ FullNode encrypted the message using "CAST5".

I would have expected the PGP tools to be able to figure it out on their own, but it seems not, which is also something to ponder (that or my Newbie PGP status). I tries changing from AES to CAST5 on Kleopatra’s configuration, but still got nowhere (when I closed/reopened Kleopatra, it went back to AES anyway).

Anyone know how frequent these cypher algorithm clashes occur, and whether it is tool dependent and/or resoluble using Kleopatra on the message decoding side ?
legendary
Activity: 3290
Merit: 16489
Thick-Skinned Gang Leader and Golden Feather 2021
Total PGP n00b here Sad

I'm trying to verify a PGP signed message.
This is the message:
Code:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

{
  "comment": "Never share your Letter of Guarantee with third parties. Attach this document to our Support Team only when you are facing problems with your mixing order. The Letter of Guarantee is only available during the active mixing operation. After the completion all data about your order will be deleted automatically from our database.",
  "createdAt": "2020-11-19T09:57:06.272Z",
  "orderId": "8met22-y42jhq-113f2m",
  "currency": "BTC",
  "serviceFee": "3.68%",
  "feePerAddress": "0.00025 BTC",
  "depositAddress": "3MCTfAkzR41eGJhPwvBHQ2EuL66JsGx4VH",
  "destinations": [
    {
      "address": "1NXYoJ5xU91Jp83XfVMHwwTUyZFK64BoAD",
      "share": "100.0%",
      "delay": "129 minutes"
    }
  ]
}
-----BEGIN PGP SIGNATURE-----
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=h7XR
-----END PGP SIGNATURE-----

And this is the PGP public key:
Code:
-----BEGIN PGP PUBLIC KEY BLOCK-----
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=d7db
-----END PGP PUBLIC KEY BLOCK-----

After trying to verify, Kleopatra tells me this:
Quote
Not enough information to check signature validity.
Signed on Thursday, 19 November 2020 10:57:13 CET by [email protected] (Key ID: 0x77379A5D).
The validity of the signature cannot be verified.
Am I doing something wrong?
legendary
Activity: 2296
Merit: 2892
#SWGT CERTIK Audited
-snip- Is there any other workaround where I can directly paste my "Fingerprint" to MIT PGP Key Server for lookup instead of manually creating a link of -snip-
If you have successfully uploaded your public key at https://pgp.mit.edu/ or other Key servers, you can replace my fingerprint below with your own:
https://pgp.mit.edu/pks/lookup?search=0x58BC997445D96F68DB65C169A2CA884F183D22E9
http://keyserver.ubuntu.com/pks/lookup?search=0x58bc997445d96f68db65c169a2ca884f183d22e9&fingerprint=on&op=index

You can also use http://keyserver.ubuntu.com/ for Search key/Submit key; Click Advanced Options to view Index options/Index type.

-snip- In MIT Key Server, there are three sections and I assume the "Extract Key" is the section I will be using to search for my public key though I am not sure what string I will be using? Is it the FINGERPRINT itself? -snip-
MIT PGP Public Key Server brief guide:

Extracting a key
  • Type the text you want to search for in the ``Search String'' box. If you want to look up a key by its hexadecimal KeyID, you have to prefix the ID with 0x
  • Select either the ``Index'' or ``Verbose Index'' check box. The ``Verbose'' option will display signatures on keys.
  • Press the ``Do the search!'' button.
  • The server will return a list of keys matching the search text. The page will have links for every KeyID, and every bracket-delimited identifier (i.e. < [email protected]>). Clicking on the hypertext link will display an ASCII-armored version of the public key.
Currently, I am personally more comfortable using http://keyserver.ubuntu.com/ instead of https://pgp.mit.edu/
legendary
Activity: 1904
Merit: 1563
@Husna QA,
Thanks you for the heads up. I've now gone past the same problem they encountered from following the tutorial. I have now changed the default key server to https://pgp.mit.edu/ and was able to lookup my "PGP Public Key Block".

Is there any other workaround where I can directly paste my "Fingerprint" to MIT PGP Key Server for lookup instead of manually creating a link of
Code:
https://pgp.mit.edu/pks/lookup?op=get&search=0x3466CFA83DEBE525F40446E5AC1D3A48A6161C75

In MIT Key Server, there are three sections and I assume the "Extract Key" is the section I will be using to search for my public key though I am not sure what string I will be using? Is it the FINGERPRINT itself?

legendary
Activity: 2296
Merit: 2892
#SWGT CERTIK Audited
An error occurred while trying to export OpenPGP certificates.
 Server indicated a failure gpg: keyserver send failed: Server indicated a failure
-snip-
Try changing the OpenPGP keyserver.
If you are using Windows OS and Kleopatra as in the tutorial above, go to Settings -> Configure Kleopatra ...
In the OpenPGP Keyserver column (default: hkps: //hkps.pool.sks-keyservers.net), enter the keyserver that is still active/accessible, https://pgp.mit.edu; http://keyserver.ubuntu.com/; or other servers; then click OK.

-snip-


Here's an example of my public key:
http://keyserver.ubuntu.com/pks/lookup?op=get&search=0x58bc997445d96f68db65c169a2ca884f183d22e9
legendary
Activity: 1904
Merit: 1563
An error occurred while trying to export OpenPGP certificates.
Server indicated a failure gpg: keyserver send failed: Server indicated a failure
It is because the SKS PGP Keyserver is being abandoned due to peoples abuse of known public keys on the server. I stumbled on this article when I tried looking for other keyserver lookup as alternative as I was also following the same tutorial. But still, even without uploading it to a keyserver, you can still verify the pgp signature of an application and encrypt/ decrypt a message.

The Death of SKS PGP Keyservers, and How First Look Media is Handling It
The SKS keyserver network is dying. This has been a long time coming. The nail in SKS’s coffin came in late June when someone abused important public keys that people rely on.
hero member
Activity: 2338
Merit: 757
An error occurred while trying to export OpenPGP certificates.
 Server indicated a failure gpg: keyserver send failed: Server indicated a failure

This is what i got while trying to publish on directory service. Do you know what i did wrong?
Unfortunetly, there is no other guides show you how to interact with pgp signatures here in bitcointalk. I also remember how i followed this guide and face the same error but i didn't look further. Better to ask for opinions directly from users community .
Thanks for bumping this topic, i was looking for it .
member
Activity: 91
Merit: 35
An error occurred while trying to export OpenPGP certificates.
 Server indicated a failure gpg: keyserver send failed: Server indicated a failure

This is what i got while trying to publish on directory service. Do you know what i did wrong?

Quote
It is because the SKS PGP Keyserver is being abandoned due to peoples abuse of known public keys on the server. I stumbled on this article when I tried looking for other keyserver lookup as alternative as I was also following the same tutorial. But still, even without uploading it to a keyserver, you can still verify the pgp signature of an application and encrypt/ decrypt a message.

I don't know why people like to abuse things like this. Indeed i was able to encrypt a message and @OgNasty was about to decrypt it.
legendary
Activity: 2296
Merit: 2892
#SWGT CERTIK Audited

Click here for my Fingerprint on the server.
Code:
81DAEE690159E01E28FF951086FEA0B65C6E1B2C

I added your public key to the list of my GPG keychain (Mac OS)



I recommend use ecdsa or ed25519 rather than rsa.

Code:
gpg2 --expert --gen-key


ECC: Elliptic-curve cryptography

This is mine:


Public Key (ECC) :

Code:
-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: SKS 1.1.6
Comment: Hostname: keys2.kfwebs.net
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=vPXh
-----END PGP PUBLIC KEY BLOCK-----


legendary
Activity: 2730
Merit: 7065
@madnessteat
The program stores your keyrings here: C:\Users\UserName\AppData\Roaming\gnupg
So even if you uninstall the software your keys should remain in that folder. That is why you see them the 2nd time you install Kleopatra on your device.

Source:
http://wald.intevation.org/forum/forum.php?thread_id=1226&forum_id=21&group_id=11
legendary
Activity: 2310
Merit: 2073
You will need to import your private key. It's important you always keep the backup of your private key.

You do not understand me. Sorry for my English. When I install the program a second time, it automatically shows me my certificate (name and email).
I entered the installed program only:



The program does not ask me to enter anything when you first enter.

Before removing the program, I should to delete the certificate manually?
copper member
Activity: 630
Merit: 420
We are Bitcoin!
Tell me please. When I delete the Kleopatra and install it again, my certificate immediately appears in it. Where is it stored on the computer, if I did not import it into my computer?
You will need to import your private key. It's important you always keep the backup of your private key.
legendary
Activity: 2310
Merit: 2073
Tell me please. When I delete the Kleopatra and install it again, my certificate immediately appears in it. Where is it stored on the computer, if I did not import it into my computer?
member
Activity: 317
Merit: 81
Next to Full Member Rank.
Could someone explain what is the purpose or advantages about to create or make a PGP?
Mostly privacy. You don't want the NSA reading your emails, do you?

Quote
PGP is useful for two things: 1. Privacy and Security, and 2. Authenticity. By privacy, I mean that you can prevent people from seeing things. For example, you can encrypt an email to someone, or encrypt a file with a list of passwords. By Authenticity, I mean that you can ensure a message was sent/written by the person you think it was, and that it wasn't modified by a third party. Of course, these two can be combined. I'll discuss these further.
Source: https://www.phildev.net/pgp/gpgwhy.html
Got it!
legendary
Activity: 2758
Merit: 6830
Could someone explain what is the purpose or advantages about to create or make a PGP?
Mostly privacy. You don't want the NSA reading your emails, do you?

Quote
PGP is useful for two things: 1. Privacy and Security, and 2. Authenticity. By privacy, I mean that you can prevent people from seeing things. For example, you can encrypt an email to someone, or encrypt a file with a list of passwords. By Authenticity, I mean that you can ensure a message was sent/written by the person you think it was, and that it wasn't modified by a third party. Of course, these two can be combined. I'll discuss these further.
Source: https://www.phildev.net/pgp/gpgwhy.html
member
Activity: 317
Merit: 81
Next to Full Member Rank.
Could someone explain what is the purpose or advantages about to create or make a PGP?
newbie
Activity: 51
Merit: 0
I recommend use ecdsa or ed25519 rather than rsa.

Code:
gpg2 --expert --gen-key

Code:
gpg (GnuPG) 2.1.8; Copyright (C) 2015 Free Software Foundation, Inc.
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
Please select what kind of key you want:
   (1) RSA and RSA (default)
   (2) DSA and Elgamal
   (3) DSA (sign only)
   (4) RSA (sign only)
   (7) DSA (set your own capabilities)
   (8) RSA (set your own capabilities)
   (9) ECC and ECC
  (10) ECC (sign only)
  (11) ECC (set your own capabilities)

ECC: Elliptic-curve cryptography
copper member
Activity: 630
Merit: 420
We are Bitcoin!
I had some problems with "Decrypt an Encrypted Message," but will try to follow your method "I just wake up."
  - Excellent explanation and attractive design.
You can add some important PGP Signatures [theymos, ThomasV, Bitcoin core,.....etc.]"I have created a short list here"----------->Some of PGP public keys [you should import]

try to add this site to your tutorial ------> https://keybase.io "I noticed many people using it"

Hello hugeblack,

Will do mate. I am still working on this tutorial. After posting the topic I crushed last night. I just woke up now and noticed I became a Full Member. It's exciting and I am going to celebrate the happiness. I will add few more alternative ways for PGP using https://keybase.io and others soon.

Appreciate your feedback and thanks for the compliment. It took me long time to find a good banner for the top  Smiley


Update1
Added some example PGP Public Keys.
copper member
Activity: 630
Merit: 420
We are Bitcoin!
copper member
Activity: 630
Merit: 420
We are Bitcoin!
Code:
Tuesday, May 21, 2018 @20:56 GMT: Added some example PGP Public Keys
copper member
Activity: 630
Merit: 420
We are Bitcoin!

Pretty Good Privacy
English Version Tutorial (Windows Only)
Please wait 1/2 minutes (depending on your connection speed) to load all the images



Table of Contents




Abstract
Go to top

Many people do not have any clue about PGP encryption/decryption. It was same for me however I had to learn it the hard way. Explore the topic The BCT PGP/GPG Public Key Database: Stake Your PGP Key Here to understand why you need to know it. If you are an Electrum wallet user then I am pretty sure you have seen a signature link next to the installation file. You also seen a warning notification on the top which talks about a fake copy of Electrum.


Long story short, PGP gives you extensive privacy and you can easily validate the authentic source of your received file/text. In this tutorial we will learn...

# How to create PGP Signed message and signature
# How to verify a PGP Signed message and signature
# How to encrypt a message
# How to decrypt a message

Once you get a good grip of these 4 basics, I believe you will be able to grab the rest without having any further assistance.



A Better Understanding
Go to top

Before we start, it's gonna help you if I give you a brief. PGP consist of two Keys...
1. Private key <=== You need it to decrypt a content
1. a) You also need a passphrase, in other words a strong password.
2. Public key <=== You need it to encrypt a content

Think about a very sensitive message you want to email to your friend. You don't want any gov agency or any spy read the message. These people can easily access your email server. To avoid it, ask you friend to give his PGP public key. Once you have it then encrypt the message and email the encrypted message to your friend. Now only your friend can decrypt it because he knows the private key.

Warning: Do not share your private key and passphrase with anyone.


Getting Started
Go to top

Download and Installation Go to top
You will need Kleopatra desktop application. Click here and download gpg4win-3.1.1.exe (this is the current version, you might find the same or a different version but don't mind, whatever the version they will have on their server, it will be downloaded). Once download done, go ahead and install the application (I assume, you know basics of installing an application). Once installation done, you will be seeing Kleopatra icon on your desktop.

Create Your First Private and Public Keys Go to top

1. Open Kleopatra > File > New Key Pair...
LoadingOpeningKleopatra
Click here if unable to see image

2. Click on Create a personal OpenPGP key pair
LoadingCreateA personal OpenPGP key pair
Click here if unable to see image

3. Enter Name and Email > Click Next
Loading without name and email Loading with name and email

In our case, we are using...
Code:
Name: mdayonliner Tutorial
Email: [email protected]
Of course these are made up information to demonstrate the tutorial

4.Click Create
Loading Click Create

5.Enter passphrase (consider a strong password) -> Repeat -> click OK
Loading without passphrase Loading with passphrase

In our case we have used... <=== Do not publish it in public ever
Code:
tutorialMday

6. Record the following information...
          6.1. Fingerprint : In a text file or any other file of you choice
Code:
3DE42C11CBDD44EFC63B602DFA92987833EE3CE0
         6.2. Make a Backup Of Your Key Pair...
          6.3. Upload Public Key To Directory Service...
          6.4 Finish
          Loading Record the following information...

          6.2 Click on Make a Backup Of Your Key Pair...
          Click on Before Make a Backup Of Your Key Pair...

          Chose a directory of your harddrive and keep the file safe. This is our private key obviously

          Enter passpharse -> Click Ok
          Loading...
          Click Ok
          Loading...

          This process just exported the PRIVATE KEY  <===== Do not publish it in public ever
          Locate the exported file and open it with notepad
Code:
-----BEGIN PGP PRIVATE KEY BLOCK-----

lQPFBF/gbYIBCADNJHgmcOlD0qIXGl842UUxRISp5NJHQQdq5erExw32ta/2rahs
/LRpeTv/2QwcXkgZM5LWCttmD4769X2iq6Sj7im63Mso64PdcFT7IGjuVRWD1iBu
i2kPFkpDOp54h3uo6hfDuH0xYCisdP7qOi5tCB41ReO8lPVXKvHFwQz/3ULMfX1+
Gi8XXhllfin3QORoL87wz81ohWYO7E48G/uIUwEf2fN8s+DYiZGg8NDMNll0AfaX
LpukGqjNKIFEdWdRRPcQWChfYNweKftIA6HCRgIUlOPsQHdxfFirTRAPLRi52KG7
6Wz49V+2d+a08R5iS9HP/+SlstN8mLrCM23DABEBAAH+BwMCDG8dQU9GirbAueRZ
M6LV7stPUt4h7lo6a0Ltr1e367BbdwQXSxk6G2GrVtpyCRr3NYbj0AaNOVM1coJ1
yjXS0fAHKrPMHOkeK0ilxwRwiN/SQecBkt99uJ7Khj6pgzizY0I/oB6OnNIkxshp
nioO7/wKQbU08LNmW0/Xaiq6C9YlpHt/3x4srZkBWBMG1WV7aljvSXqgw610XY2c
2/G10azqUOPdNwnpbqFFUbE0isqDJamqH1r/jaLzl12KKUreGJeR25ITC31AvxLC
nvHxAGGSfaRTxzms+kwaYcH9+Vwfs1caAwLAZWf6y09ZUF2ggOzx0IvhIUqZoBgw
8yFWQn8/CrVowPWJqM+INUdtdJCZPMflgMJ58mCK9i9V417vKtHkxpGdTDJlehOc
Zs2yVCJykWz7c00dGR1jDArp6h3ekpZlAj1v+mL2DWroxpJ1s8skf30wcrXd59Dv
XzjGAAt2eRhcFLSSTLtLvFFU/ajRlIKsYIjsB0ralk/RHdDMgp3+YmKQmldnYSK4
tC6+t/LjwH8+/TRto9rbvy7NXRQGQtTuPdAAE4yAfg9XcCpssu1NYasU3Fxbjb0f
7iQ+PEoNvMMmFZqjk2rbaNeQIPchvbjuuPLXquHdZd8iksDSi/q7DlhCSfK633dk
OTewP+bn6fyMPeFL3LIPz+z3IKdnXF10YYOhQT6hGRB3NPumgTqY0mLl3cue2iJ8
QAjUFa5dMfPj8mzI5WL3zXWW5KMSCUFH0mdibE21ruj7mdLyQM/LTh7ycAEmmNHH
JbsXeR+23w8w8GRBZslHZ3AmrISzG9iyT3cEFI1szLKEN6XEyKYA63ZY7WQw7c8B
0tlcVUiiyFsPau2xSNqxGybJndVVZe7NLn8AmB0AP4cDgiHIegxBagm7SAm6xJ3p
M7iL3F9JKsW0L21kYXlvbmxpbmVyIFR1dG9yaWFsIDx0dXRvcmlhbEBiaXRjb2lu
VGFsay5jb20+iQFUBBMBCAA+FiEEPeQsEcvdRO/GO2At+pKYeDPuPOAFAl/gbYIC
GwMFCQPCh78FCwkIBwIGFQoJCAsCBBYCAwECHgECF4AACgkQ+pKYeDPuPOBT+ggA
itQ2xfCdbZKXSoKRcVyv6qnEmN5b8wMUX6YB/BqvHBEwhu0AvWx/+DAygX7dblH1
uO2LfsziBXGNpvAQ5gTb6MbZgNZI2zZN1sSUMcJXUfeCJc2op3zysJXjMY4FBQpq
GzzEcfaoB07Uo+XWqSGqQ2By9Wue2gUdY+TB82QZRyJjpkpSmSn1mcG+p7kNmgn+
JzAUsIxc1fxEcpEMk0fZcoQ3NNjOv9C44meNvQtDZynizwHruDacRqyoFyTSAkXb
C5hu26ENYm4hp18opaiQz3BgNHwDcxzrK7tXpSSTpsd6nnRS6z6sVC/IH1klcYSb
zu1AWyjFLzQIzyZwwFvElZ0DxgRf4G2CAQgA7PQJndA3Dg7xYXtmMuDdlPUVeYLL
XxpcmfdACF5SCV/IsyUifhjeLrkRJ72jxL2pI287UdOmlx0BeK/MTYqLRxJhixa6
hER+aGh1XKy1sps77pmPhShnSUuoIMPoHCLYg0oZRzZblEbWC0XeiIte718MGf0E
N/I3lTl47mr2gUPDf7IIWO1wTY0oPRQdUMCckK8/qMjZKuFpn81LFybeBekxVcGM
BiXtU08wVbxJF5W1P8dLWKZNuAFgVU19EJHi25P1oHVYLwTbhkYtiw6lbo4PPgZE
WKEbfIxrJWiyyGkSEKgOUKlTyNEV6OMUaT9DkvfEVdRnE7U9E3vZqkDYGQARAQAB
/gcDAsZXtxUIrUDGwM1cKwFwZmLC3u46OglL3i7nKhV+XoY5kOFABGKoht9dXe8h
v/0CR5x/As6mQpjuZAyWUEXOmkndM/7uqeGC4vhqQC8JulOAv5rLlJKX1+b4xyH5
ddo0dV7jPY2T24xwhtWVdroAad3RGwlt/N6E1aZZo2IL3AiA9pJg/pj/+DNn5t/k
U5jybMJ1Lfpmps41EApp5xNf5gJVqKGzCifSO7H1u8PZen2SqUtm6NUKWQYJiGiy
etGZ7uLD0xNRhe5AjT2i//eBHzLbHznbQFqxSwl984jFOcdnBEXxTSRh0TATyGj1
s+eh98gcT4B156GAq5MZDm58Ktax4GFuST7Nn8/Bmz0te5f5n106ZwzyyZQtZBcj
5msLiwle+Lr0TRH294jSoxj3060b38XBfg5rkeinPgN9Zyi2ek2xvvslG3O5gFdg
uHymAdzkLJB3vhG9aUUyZUN2av6nL83jtm05cEtCcuwxcni2CT4+yl9kycxwaZAO
CYtdvfOlSdb1WthgCaJ7lMeaa5IY5Z2HZXqp/vU8mKy8KKTUHCxXYTeDvMDb0lTK
1frwTwaCNPsexIZW6NbCfQNfFtuq3A6seDhZh7/SeS5X1PS5WhJJy+uiMvyp0nmH
ABqk1sBjwX3XrEEdv9Sb+6AkzpzrJC7TAL5EcmBMoyQPeWTxEIEXaWiKLEWGM4V4
Wrr0cqjmh2ujWhiG4MJECErxpqEDE52PRBYsrDQJF3hgrj3l43ub0z8yx9zR5LTN
vVIOYj/P7NehSN1kRTyKAw+vSWfbfR0iwR0ScWt3wzG5Phg88FiLBxsLANMzWqFs
92pqR1DtbwxeSMPpqw45l6h9ogGx9y8wAqLrlUIihvvrlrL2LQMEKjYU06hPkhEA
mzBTtEj1uAEnLhQ2/yD0WDJym5IBkCbvQIkBPAQYAQgAJhYhBD3kLBHL3UTvxjtg
LfqSmHgz7jzgBQJf4G2CAhsMBQkDwoe/AAoJEPqSmHgz7jzgqYIH/jPJVkxr1nC7
GNWL9VSwQIjvfI294TlcB/3Q9N9EbDHr+LqMnZIh/zBdnzK62agGgK3SpJeWIfqk
T7CmHrvNNH3BCTaamhrli5Jb46/BGh4tSPRNx5dUeBqK9+lUqlvlHlaK7TFBdMnk
wr81r136VfQeZyDooSNnpDhCCbVbZT4iMdXXbWbY8lF9be+vEwnyePDscjB1HkIV
MU5jfWmjzGe57uC/2BDOzkm2hRDnUrXp4iQlB2HEJZx3hDKO768fzSxYVi8ySlzP
MXF4JXTrvAFp8wDmGK6NV8tPvi6LdIoH5LqRHOlr78Wl2Xh2HMGdzbRdG1/Vxf/4
Tz/DdObW36k=
=G8Nk
-----END PGP PRIVATE KEY BLOCK-----

          6.3. Click on Upload Public Key To Directory Service... -> wait a little bit -> Click OK
          This will upload the Public Key online in the PGP Directory Service
           But before that we need to check if the directory domain is still active. In case of inactive domains please follow the following setting.
An error occurred while trying to export OpenPGP certificates.
 Server indicated a failure gpg: keyserver send failed: Server indicated a failure
-snip-
Try changing the OpenPGP keyserver.
If you are using Windows OS and Kleopatra as in the tutorial above, go to Settings -> Configure Kleopatra ...
In the OpenPGP Keyserver column (default: hkps: //hkps.pool.sks-keyservers.net), enter the keyserver that is still active/accessible, https://pgp.mit.edu; http://keyserver.ubuntu.com/; or other servers; then click OK.

-snip-


Here's an example of my public key:
http://keyserver.ubuntu.com/pks/lookup?op=get&search=0x58bc997445d96f68db65c169a2ca884f183d22e9
         Loading... Loading...
          Don't worry if there is an error. You can do this later after proper configuration.

          Click OK and Finish

          You should be seeing your newly created PGP user ID
          Loading...

          6.3.a. Right click -> Click on Publish on Server
          Even after changing the server if you keep getting error then do not worry. You do not need any server for your public key. You can save it in your computer
          Loading...

          Save it in your computer in a known directory. This is your public key

Code:
-----BEGIN PGP PUBLIC KEY BLOCK-----
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=5HwR
-----END PGP PUBLIC KEY BLOCK-----

So, we have now our...
1. Private Key
2. Passphrase

3. Public Key
4. Fingerprint


Red: Private only | Green: Publicly can be shared

Create PGP Signed Message and Signature Go to top

Assume below is our message and we want to sign it using PGP Signature
Code:
My username mdayonliner. It's m-day-online-r
I am going to sign this message using PGP

1. Open Notepad > Type the message > Select the message > Copy the message.

2. Open System Tray > Right Click on Kleopatra icon > Mouse hover on Clipboard > Click OpenPGP-Sign...
Loading... Loading...

3. Click Next > Enter passphrase > Click OK

By default it should have your Key pair to sign for, we can call a Key pair as Certificate. If you have more than one for yourself then you can change it to the one you are going to sign for.
Loading... Loading...

4. Click OK

Loading...

5. Open another Notepad > Paste (Ctrl+V)

Code:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

My username mdayonliner. It's m-day-online-r
I am going to sign this message using PGP
-----BEGIN PGP SIGNATURE-----

iQEzBAEBCAAdFiEEPeQsEcvdRO/GO2At+pKYeDPuPOAFAl/geZ0ACgkQ+pKYeDPu
POAS+wgAxzymzoGipQkSrQiiJQThiM1nQN+fFhxhhPXgEyt1Bk/9Hwl9WJB2hd/R
I4FWWSIiBkCGzvsYga25oP4ZCAaiEPEN8jpVfcgQJwjp4DpBjq66rFz7vtAZKR3I
I6L9BZf7LiQ0rF6k0g95WNm2zKUHPD1KiGOP6YqOEw6LS8m6j0ciuQiC6M4HEzZc
pTHsgCjpCF/epM5nSu3UFuFSs6kojKWtckQs0vXfhBK3PO7xqNrL+nkYUAcizUzg
SNHXW3+iaY0QGYnLEYZqXwft6q+ir84WmKeeEKxtrVNfUNMuyoqyG34Pj2z2yUoK
VLgayddA+H+uzs3YM/ApnbqFJ7Vx5g==
=o0kG
-----END PGP SIGNATURE-----

Congratulations, you have just created your first PGP Signed Message with Signature.

[--------------still updating below contents ------------- 21/12/2020]

Verify PGP Signed Message and Signature Go to top

Let's say we want to verify the PGP Signed Message of Husna QA. Below we have our PGP Signed Message with Signature
Code:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Date: 2018-03-29
Bitcointalk.org login: Husna QA (1827294)
Bitcoin address: 1HdK4YRuPrgWrTkFHTPaJoLvYJ8Cgehgnc
E-mail: [email protected]

PGP fingerprints:
RSA: 0x58BC997445D96F68DB65C169A2CA884F183D22E9
Ed25519: 0xC9B290C8C87C9BB5F440E82AD21FD04306AED362

I declare that aforestated Bitcoin address
may issue signatures controlling the aforestated Bitcointalk account.
I declare that my aforestated PGP Fingerprint RSA and Ed25519 Certification key is
the peremptory trust anchor for my online identity at this time,
and unless/until that key signs a statement declaring otherwise,
Unless this statement be revoked or modified by a statement bearing
authentication rooted in that key.
-----BEGIN PGP SIGNATURE-----
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=0PbZ
-----END PGP SIGNATURE-----

1. Select everything in the code tag > Copy (Ctrl+C)

2. Open System Tray > Right Click on Kleopatra icon > Mouse hover on Clipboard > Click Decrypt/Verify...
Loading... Loading...

3. Click Search > Wait few seconds until you see an active window > Select > Click Import

You will need PGP Fingerprint/Public Key of Husna QA, imported in Kleopatra Certificate list. If you do not have it prior then start from search.

Loading... Loading...

4. Check 1 & 2 > Click Next (3)

Loading... Loading...

5. Choose your key pair > Check Certify only for myself > Click Certify

Loading...

6. Enter passphrase > Click OK

Loading... Loading...

7. Click Finish (1) > If the imported information are valid then you will see green > Click Finish(2)

Loading... Loading...

8. Open another Notepad > Paste (Ctrl+V)

Code:
Date: 2018-03-29
Bitcointalk.org login: Husna QA (1827294)
Bitcoin address: 1HdK4YRuPrgWrTkFHTPaJoLvYJ8Cgehgnc
E-mail: [email protected]

PGP fingerprints:
RSA: 0x58BC997445D96F68DB65C169A2CA884F183D22E9
Ed25519: 0xC9B290C8C87C9BB5F440E82AD21FD04306AED362

I declare that aforestated Bitcoin address
may issue signatures controlling the aforestated Bitcointalk account.
I declare that my aforestated PGP Fingerprint RSA and Ed25519 Certification key is
the peremptory trust anchor for my online identity at this time,
and unless/until that key signs a statement declaring otherwise,
Unless this statement be revoked or modified by a statement bearing
authentication rooted in that key.

Congratulations, you just verified your first PGP Signed Message with Signature.

Create Encrypted Message Go to top

Before creating an Encrypted message we need someone else's PGP Fingerprint/Public Key Certificate. We already imported Public Key information for Husna QA. So, lets assume we will send him/her the Encrypted message. <<=== Please literally do not send him/her any message. Hack, s/he does not even know about this tutorial.

Now assume, below is our message and we want to Encrypt it.
Code:
It's m-day-online-r going to Encrypt this message..
..using Kleopatra PGP Encryption

1. Open Notepad > Type the message > Select the message > Copy the message.

2. Open System Tray > Right Click on Kleopatra icon > Mouse hover on Clipboard > Click Encrypt...
Loading... Loading...

3. Click Add Recipient(1)

Loading... Loading...

4. Select Recipient > Click OK (2) > Click Next

Loading... Loading...

5. Click OK

Loading...

6. Open Notepad > Paste (Ctrl+V)

Code:
-----BEGIN PGP MESSAGE-----

hQIMAxIivShhBiNAAQ/7BfTGV45X7tTjagQ/mfukFLFqo/FfrHLqVhySDYsYsoE5
hAXlQeKEm6mBC5XR30OutDYCEdQSW9JJTNrBFXwdghyHsfn1aVRZqNFrxtJYRM4C
yqFqfTPztfq8J4AGm9AtRmBi/EfIRI1QqgjGKokhHzHIeMUzO5wr5CnTfgH/8Xp2
SWq7R7b4ZQ0kxt2Jfj0n80wzWL/s1+IABl1JdiXeRqabaNrHR0VhrJYZlRYoZenC
/HXwlUWooyVG1oMfBr+qiaVddmzX2q6V5HrO4HBtaQ8bePK/zAdJE0KBKtcH0F3t
q4g7jErt7mmqw4WI+6l0wbix3FwFPPWFp9UkkV7QflUzvLHrEK+dK0Sx8+mALEhT
bkaGTypBslbAQGWXdQ4F66Zg/Pxkbu46IF8SZki9PTi5ngIwH6sOTgQFcXDlsbDz
eOLf1BH50LP0C5BbeVlHAHl+uP4A5Sd2ng6d0lACoMPNYCJEIERFSdoVG2N4s3QT
diihurYJCKLRO0g/vIEtoxnXltg9TAlJ0VQoGhirN4bMiNe1KV7qpl4/xXeFbjVD
IuiDFGG6q7Als9rzbt8dJKAMjOwlG/ai6vP/51IUqA0NaMX/HlEI2p8ZmqyeW28y
SnoRSOL4A3G6Bv7wORsFdX0DTRdCLAqtzF/HPx+U8xBMw2Uu1/sUrIAMtG6fTgXS
hgFrTTMr9mAJ83NbbKU0408hYMuIKPYM+fibolxxLnvSD40EuzsR5aeKOmfD/Le4
91PU5AQeWkcMSSuGvHDgGUZUyhrGM+bYV2ACNQ3+Hj1ZuRLsYoukcPxIo5ovpALs
xqSFtN1jNFhSShFagnGJuXyDi7HIz7TgQS9E+HmAfBF8ZeiW10G+
=ONYM
-----END PGP MESSAGE-----

Congratulations on Encrypting the message. If you send it to Husna QA, then only s/he can Decrypt it and read the original message.

Decrypt an Encrypted Message Go to top

Assume you know my PGP Fingerprint/Public Key. You sent me an Encrypted message which is below.

Code:
-----BEGIN PGP MESSAGE-----
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=90j2
-----END PGP MESSAGE-----

My Fingerprint (This is the one I am using for the forum):
Code:
81DAEE690159E01E28FF951086FEA0B65C6E1B2C

Now, we will see how to decrypt this message.

1. Select the entire message > Copy (Ctrl + C)

2. Open System Tray > Right Click on Kleopatra icon > Mouse hover on Clipboard > Click Decrypt/Verify...
Loading... Loading...

3. Enter passphrase (1) > Click OK (2)

Loading... Loading...

4. Click Finish

Loading... Loading...

5. Open Notepad > Paste (Ctrl + V)
Code:
Hello m-day-online-r,
I am sending you this encrypted message.

Thank you.
This was the raw message which was encrypted before.

Some Real Life PGP Public Keys
Go to top

Some of the example PGP Public Keys you might be interested to explore or have it imported.

Name                      Knows as                                       Key file or Fingerprint   Ref
satoshiFounder and Bitcoin Creator   File   Source
theymosAdministrator of BitcoinTalk   File   Source
gmaxwellBitcoin Core Developer   File   Source

Exercises - Home Work
Go to top

Welcome to the exercises section. Before we start, here is what you wanna do.
1. Create a New Key Pair with the following information

Code:
         Name: ex-
          Email:
i.e:
Code:
         Name: ex-mdayonliner
          Email:
We don't actually want to use our real name and email address for these exercises. The username part with the prefix ex- will help me and others to identify that we are communicating with you.

2. Have your Fingerprint published on the online server. It's gonna help me and other members to access your public key for encrypted communication.

We will have two assignments to practice. I will think of an award later for the successful participants.

Assignment 1: PGP Singed Message and Signature - Coming soon.
Assignment 2: Encrypt and Decrypt Message - Coming soon.


Click here for my Fingerprint on the server.
Code:
81DAEE690159E01E28FF951086FEA0B65C6E1B2C



electrobit: Could someone explain what is the purpose or advantages about to create or make a PGP?
Answer

Please feel free to ask any question in the comment. I will add them in here with the answer. If I do not have the answer then I will try to seek senior members' help or I will find an answer for your question. Make sure the question is related to the topic.



Acknowledgements
Go to top

Husna QA: The topic PGP/GPG Signed Message - Public Key in his/her local language was the starter for me to start my learning. I am happy that I was good enough to understand the translation in English.
TryNinja: Provided some URLs which cleared my head to understand better.
hugeblack: Suggested the idea of adding some example PGP Public Keys.
All the members who were leaving their PGP PUBLIC KEYs all around the forum. Seeing these encrypted codes were interesting for me and finally I decided to investigate what was it all about.




References
Go to top

https://en.wikipedia.org/wiki/Pretty_Good_Privacy
http://www.pitt.edu/~poole/PGP.htm





This tutorial will be continued with further materials in future
Looking forward to your expertise review and feedback
Jump to: