Generating keys
|
Generating keys |
|
|
First, you need to create your keys. There is a number of desktop applications, which make the process simple and easy. For example, software for Windows called WinPT. For information about WinPT, installation, use and key generation visit http://winpt.sourceforge.net/en/. Here is what the process of generating keys might look like if you are using a command-line version of GnuPG. In our example we are using a fake name and email address - John Smith <john_smith@example.com>: 1. Start key generation: gpg --gen-key 2. Select the key types you want - The default is good. Please select what kind of key you want: (1) DSA and ElGamal (default) (2) DSA (sign only) (4) ElGamal (sign and encrypt) Your selection? 1 3. Select your key size: DSA keypair will have 1024 bits. ELG-E keys may be between 1024 and 2048 bits long. What keysize do you want? (2048) Requested keysize is 2048 bits 4. Set the lifetime of this key: Please specify how long the key should be valid. 0 = key does not expire <n> = key expires in n days <n>w = key expires in n weeks <n>m = key expires in n months <n>y = key expires in n years Key is valid for? (0) 1m Key expires at Fri Jun 10 14:39:04 2005 MSD Is this correct (y/n)? y 5. Enter your name and email address(es)... Real name: John Smith <return> Email address: john_smith@example.com<return> Comment: You selected this USER-ID: "John Smith <john_smith@example.com>"
Change (N)ame, (C)omment, (E)mail or (O)kay/(Q)uit? O 6. Choose a passphrase. It should be long and very difficult to guess. It should be something you won't forget. If you forget your passphrase, you cannot recover your key.
After you have generated your public and secret keys, go to AdvancedSecurity configuration page. |