Objectives
This helps you understand how to secure Email communication using PGP
Why do you need to know
Encryption protects the contents against unauthorized access. Digital signatures make sure that it is not modified and comes from a specific sender. Thus, it is essential to use digital signature for Email communication in order to avoid the content of the Email from being sniffed.
What is GPG?
GPG is encryption software for files and emails. It enables users to securely transport emails and files with the help of encryption and digital signatures.
Network Topology
Demo
1: Login Domain Controller
2:Create two folders on the desktop with names PGP keys and Public keys.
3:Install Gpg4win (PNU Privacy Guard for Windows)
4: Launch the application.
5: GNU Privacy Assistant -Key Manager window appears. Click Keys and select new key.
6:Generate key window appears. Enter user1 in your name and click Forward.
7:Enter your first Email account ID in your Email Address and click Forward.
8: Ensure that Create backup copy is selected and click Forward.
9: Pin entry pop-up appears, enter your password and click ok
10: Backup key to file window appears, select the PGP keys folder on the Desktop and click Save
11:Pop-up appears and click Close
12: A newly created PGP signature appears in the Key manager window
13: Navigate to Public Keys folder on desktop and create a text document with name user1 public keys and open the text file.
14: Switch back to GNU Privacy Assistant -Key Manager window and right-click user1 and select copy.
15:Switch back to usr1 public keys text file and paste the copied public signature in text file and save it.
16: Navigate to desktop, and right-click on the Public keys folder and click Properties.
17: Click Sharing tab and Share.
18:File sharing window appears, select Administrator and click Share. If a Network discovery and file sharing pop-up appears, select yes. Once completed, click Done.
19: Login Client PC
20: Create two folders on the desktop with names PGP keys and Public keys
21: Install Gpg4win and open it.
22: GNU Privacy Assistant – Key Manager window appears. From Key tab, new key.
23: Type user2 in your name and click Forward.
24: Enter your Email account ID and click Forward
25: Create backup copy is selected and click forward.
26: Enter passphrase and click OK.
27:Backup key to file window appears. Select PGP keys folder on the Desktop and click save.
28: Now access the Public keys shared folder from Domain Controller. To access DC shared folder, open a file explorer and type \\10.0.0.101 (DC IP address)
29: Shared folders appears, navigate to \\10.0.0.101\Users\Administrator\Desktop\Public Keys and copy the user1 public keys.txt and paste it on the desktop.
30: Switch back to GNU privacy assistant -Key manager window, click Import from the menu bar.
31: Navigate Desktop and select user1 public keys.txt and open
32: Now user1 key is added to the Key Manager
33: click Clipboard from the menu bar. Type some data like screenshot.
34: Click on Sign icon from the menu. Select user2 and ok.
35: Type passphrase of user2 and ok.
36: You can see the PGP signature is embedded with the content appears at the bottom of the message in encrypted form.
37: Click on Encrypt icon and select user1 and click ok.
38: Now you can see that message you have entered in the Clipboard has encrypted as shown. Select all and copy.
39: Now create a new document on desktop, paste the copied content from the clipboard and save the text document, and name it as Encrypted Text.
In this text document the message you have entered is encrypted, you cannot see that message. Close the text file and copy it.
40: Now open a file explorer and type \\10.0.0.101\Users\Administrator\Desktop\Public Keys and paste the copied Encrypted Text.txt
41: Switch back to Domain Controller
42:Open public keys folder on desktop and you can see Encrypted Text file. Copy the content.
43: maximize the GNU Privacy Assistant -key manager and click Clipboard. paste the copied content from Encrypted Text.txt
44: we are going to decrypt the encrypted content. Click Decrypt from the menu and type user1 passphrase.
45: Now you can see the decrypt content with user2 PGP signature as shown in the screenshot. Therefore, you can send the encrypted messages using PGP signatures.
Conclusion
You learned how to secure Email communication using PGP.