<!DOCTYPE article PUBLIC "-//GNOME//DTD DocBook PNG Variant V1.1//EN"[]> <article> <sect1 id="encryption-intro"> <title>What is Encryption?</title> <para> Encryption is an ancient method of changing readable text to unreadable text that dates back to Egyptian times. Encryption takes the statement "Evolution" and turns it into something which cannot be read without help through decryption. <example> <title>Encryption Example</title> <para> Kevin orders an <application>Evolution</application> t-shirt from Ximian, Inc. over the internet. He puts in his credit card number which is 1234-567-8901. For security, his computer encrypts the credit card number so it can be safely transmitted over the internet. The number now is @#$23ui7yr87#@!48970fsd, which holds no intentional resemblance to the inital number. When the information gets to Ximian, Inc. it'll be decrypted into the inital number. </para> </example> Encryption can be used in email in two ways: to verify that the sender is the real sender, and to hide the message while in transmission. <application>Evolution</application> has the capability to do both. </para> </sect1> <sect1 id="generating-key"> <title>Generating your PGP key</title> <para> First, you need to create a PGP key. To do this, you'll need GPG installed. </para> <tip> <title>GPG Versions</title> <para> This manual covers version 1.0.6 of GPG. If your version is different, this may not be entirely accurate. You may find out your version number by typing in: <command>gpg --version</command>. </para> </tip> <para> You can start by typing in: <command>gpg --gen-key</command>. At the first question, select 1. The next question asks you about key length. The longer the key, more stronger it is. However, the longer the key, the longer it takes to generate. This is your choice. However, 1024 bits (default) should be adequate. The next question asks you if you want your key to expire. Expiring keys make your key invalid after a certain amount of time, so old keys don't float around active. This is the same concept as a coupon at a supermarket. Next, you'll type in your Real name, your email address, and a comment. You should not forge this information, as it is used later to verify who you are. Assuming that all your information is correct, press "O" to continue. GPG now asks you for a passphrase. This is a password which you will need to decrypt and encrypt messages. This can be any length, with any characters in it. It is case sensitive, which means that it does know the difference between capital letters and lower-case. Now your key is generated. It is recommend you surf the internet, read your email, or write a letter in a word processor. This help creates randomness in the key. </para> <para> Once this is completed, you'll be dropped back to the command line. Now you can view your key information by typing <command>gpg --list-keys</command>. You should see something similar to this: <example id="gpg-list-keys"> <title>GPG Listing Keys</title> <para> /home/bob/.gnupg/pubring.gpg ---------------------------- pub 1024D/32j38dk2 2001-06-20 bob <bob@bob.com> sub 1024g/289sklj3 2001-06-20 [expires: 2002-11-14] </para> </example> You'll now need to upload your public key to a keyserver, so that your friends can use your key. You'll need to know the ID of your key, which is after the 1024D on the line beginning with pub. For this example, it is 32j38dk2. You now type in <command>gpg --send-keys --keyserver wwwkeys.pgp.net 32j38dk2</command>. Substitute your key ID for 32j38dk2. You will be prompted to type in your password <!-- verify that you need to enter your password here --> and your key will be uploaded for your friends to download. </para> </sect1> <sect1 id="encrypt-evo-integ"> <title>Setting up Evolution's Encryption</title> <para> You'll need to open <menuchoice> <guimenu>Tools</guimenu> <guimenuitem>Mail Settings</guimenuitem> </menuchoice> Once there, select the account you'd like to associate the key to and click the <guibutton>Edit</guibutton> button. In the <guilabel>Security</guilabel> tab is a section labeled <guilabel>Pretty Goog Privacy</guilabel>. Enter your key ID and click <guibutton>OK</guibutton>. Your key is now integrated into your identity in <application>Evolution</application>. </para> </sect1> <sect1 id="encrypt-sending"> <title>Sending Encrypted Messages</title> <para> You can either sign or encrypt a message. When you sign a message, verify that you were the one who sent it, and that no one is forging your identity. Encrypting a message makes it impossible for someone with prying eyes to view it while it's in tranmission. </para> <para> <sect2 id="sign-msg"> <title>Signing a Message</title> <para> To sign a message, you simply click <menuchoice> <guimenu>Security</guimenu> <guimenuitem>PGP Sign</guimenuitem> </menuchoice> . You will be prompted for your PGP password. Once you enter it, click <guibutton>OK</guibutton> and your message will be signed. </para> </sect2> <sect2 id="encrypt-msg"> <title>Encrypting a Message</title> <para> Encrypting a message is very similar to signing a message. You simply click the menu item <menuchoice> <guimenu>Security</guimenu> <guimenuitem>PGP Encrypt</guimenuitem> </menuchoice> </para> </sect2> </para> </sect1> <sect1 id="unencrypting"> <title>Unencrypting a Recieved Message</title> <para> Sometimes, a friend will send you a message which is encrypted. In order for you to read it, you need to unencrypt it. </para> <para> When you view the encrypted message, <application>Evolution</application> will prompt you for your PGP password. You type in your PGP password and the message is then decrypted. </para> </sect1> </article>