Suse Linux Professional 9.2 Upgrade [Strong Encryption 128 Bit] 00662644457260 User Manual
Product codes
00662644457260
11.1
Key Management
This section covers operations needed for handling your digital key ring. Other
programs, such as your mail program (KMail or Evolution), access the managed
key data to process signed or encrypted contents.
programs, such as your mail program (KMail or Evolution), access the managed
key data to process signed or encrypted contents.
11.1.1
Generating a New Key Pair
To be able to exchange encrypted messages with other users, first generate your
own key pair. One part of it — the public key — is distributed to your commu-
nication partners, who can use it to encrypt the files or e-mail messages they
send. The other part of the key pair — the private key — is used to decrypt the en-
crypted contents.
own key pair. One part of it — the public key — is distributed to your commu-
nication partners, who can use it to encrypt the files or e-mail messages they
send. The other part of the key pair — the private key — is used to decrypt the en-
crypted contents.
Note
Private Key versus Public Key
The public key is intended for the public and is distributed to all of
your communication partners. However, only you should have access
to the private key. Do not grant other users access to this data.
your communication partners. However, only you should have access
to the private key. Do not grant other users access to this data.
Note
Start KGpg from the main menu by selecting ‘Internet’ ➝ ‘Security’ or enter
kgpg
on the command line. When you start the program for the first time, an as-
sistant appears to guide you through the configuration. Follow the instructions
up to the point where you are prompted to create a key. Enter a name, an e-mail
address, and, optionally, a comment. If you do not like the default settings pro-
vided, also set the expiration time for the key, the key size, and the encryption
algorithm used. See Figure 11.1 on the facing page.
Confirm your settings with ‘OK’. The next dialog asks you to enter a password.
After doing so twice, the program generates the key pair and display a summary.
It is a good idea to save or print a revocation certificate right away. Such a cer-
tificate will be needed if you forget the password for your private key, so need to
revoke it. After confirming with ‘OK’, KGpg displays its main window. See Fig-
ure 11.2 on page 126.
up to the point where you are prompted to create a key. Enter a name, an e-mail
address, and, optionally, a comment. If you do not like the default settings pro-
vided, also set the expiration time for the key, the key size, and the encryption
algorithm used. See Figure 11.1 on the facing page.
Confirm your settings with ‘OK’. The next dialog asks you to enter a password.
After doing so twice, the program generates the key pair and display a summary.
It is a good idea to save or print a revocation certificate right away. Such a cer-
tificate will be needed if you forget the password for your private key, so need to
revoke it. After confirming with ‘OK’, KGpg displays its main window. See Fig-
ure 11.2 on page 126.
11.1.2
Exporting the Public Key
After generating your key pair, make the public key available to other users. This
enables them to use it to encrypt or sign the messages or files they send you. To
enables them to use it to encrypt or sign the messages or files they send you. To
124
11.1. Key Management