Using PGP on Windows


Installing GPG4Win

First you will need to download Gpg4win (https://www.gpg4win.org/index.html) and run the installer, you will be asked to choose what additional components to install, ensure the following is selected (as they are by default);



The installation should only take a minute or so, once completed you will notice a program called Kleopatra has been installed. This is the GUI in which you will handle all of your PGP tasks. You may notice an icon in your taskbar, it is a lady with a red wig.

Creating your own PGP Public Key
Now we need to learn how to create your own PGP public key so open Kleopatra, click on New Key Pair, a window will pop up asking you to chose a format, simply click on create a personal OpenPGP key pair;



Enter a fake name or an anonymous online alias, you have to use both a first and last name. In our example we will use anon anon. You can optionally enter an email (do not ever enter your personal email). You can use a fake email, or an anonymous email, or simply no email. Just ensure you use a relatable name, this is important as when a vendor imports your key into their ring they will need to be able to find you within their growing list of contacts. Do not click next just yet, click on advanced settings and set the key to 4096 bits and then uncheck the valid until box as we do not want our key to expire;



Click ok, and then next. You will be asked for a password, this will be required to perform actions using your key so be sure you do not forget it. You are pretty much done, after a few minutes you will have your own PGP public key ready for use, it will be bold and contained within your list of contacts;



If you want to export your PGP public key then simply right click, press export and save the file. If you open the file in notepate you will see a long string of random charecters. As long as you see "PGP PUBLIC KEY" at the top in between "-----" you can share this publicy, with anybody.

Sending a PGP encrypted message

Let's send our first encrypted message, first we are going to need somebody to talk to. I guess for this example we can assume you're about to send your address to a vendor. On the order page, copy the public key to your clipboard.



Once their key is contained within your clipboard, right click the Kleopatra icon located in your task (lady with a red wig) and then select certificate import.



On the next screen, ensure the checkbox is selected and click certify.



If everything worked out you will see a window stating the certificate was imported successfully.



Now we need to prepare the message, so in this case it will be your address. Open up a fresh notepad document and type in your correctly formatted address and any additional information. Once done, copy the entire message to your clipboard.



Head back to the Kleopatra icon in the taskboard, right click the icon, select clipboard, and then finally encrypt.



Select the recipient that you intend to send the message to, as we imported their public key they will be somewhere in your list. Please note if you use a Live OS and have no persistent storage configured you will need to re-import contacts each time you restart your computer or virtual machine. Once your recipient has been selected, click next.



If all is well, you will see a screen stating that the encryption succeeded. Great!



Now all you need to do is go back into a fresh notepad, click paste, and then your encrypted message is ready to be sent to the vendor.

Decrypting a PGP encrypted message

Copy the message you want to decrypt and then in your system tray right click on the Kleopatra icon > Clipboard > Decrypt / Verify, when asked enter your PGP key password and the decrypted message will be copied to your clipboard.