CentOS

Securely Send Information with

PGP Encryption

I. Obtaining Encryption Software

Step 1:
Select System, then Administration, then Add/Remove Software.

Step 2:
For encryption in the search prompt

Step 3:
Scroll to and install (1) seahorse (A GNOME application for managing
encryption keys) and (2) seahorse plugins (Plugins and utilities for
encryption in GNOME)

Step 4:
Click Apply
Step 5:
Confirm the Install option if an additional package request is made
Step 6:
Enter your authentication information

Step 7:
Verify that you trust the signature identifier
Step 8:
Enter your authentication information again
(The packages will now download and install)
Step 9:
Click run for "Passwords and Encryption Keys" (Which is Seahorse, a
GNOME application that will help you create keys and sign and encrypt
items)

II. Creating PGP Keys in CentOS

Step 1:
Open Seahorse (also known as Passwords and Keys) by selecting
Passwords and Encryption Keys from the Accessories option on the
CentOS Applications drop-down. If you do not have Seahorse on your
CentOS system, download it from the Add/Remove Packages menu
option (see Obtaining Encryption Software instructions steps 1-9 above)

Step 2:
In the Passwords and Encryption Keys application, Select File > New >
PGP Key. Click Continue.

Step 3:
Enter your full name and email address. Then click the drop-down
specified by Advanced key options. Ensure that the option for Never
Expires is selected. Enter at least 1024 for the encryption bit.
Step 4:
Enter a passphrase. For best password practices, refer to
itsecurity.ucla.edu/topten
Step 5:
Wait for the key to be generated. This may take a few minutes.
Step 6:
Once the key has been generated, log out. Then log back in.

III. Encrypting Files in CentOS

Step 1:
After you have logged out and logged back in, you will be able to rightclick on a directory or file and select and option to Encrypt.
Step 2:
Choose the recipient. You must have the public key of the recipient. You
may search for and download the public keys of recipients at UCLA, for
example, from http://key2.keys.ucla.edu/vkd/GetWelcomeScreen.event.
Step 3:
Select whether youd like to encrypt the entire folder or individual files
(whichever applies). Each encrypted entity will have a .pgp extension.

IV. Exporting and Uploading Keys to UCLAs Key Server

A. Exporting
UCLA IT Security encourages you to upload and export your key(s) to UCLAs key
server so that colleagues can search for, import, and send encrypted files
signing with your public key. Never share your private keys.
Step 1:
Open Seahorse (alternatively also Passwords and Keys) and select
the My personal keys tab
Step 2:
Select the Export to a file button.
Step 3:
Save the key to any location
B. Uploading
Step 1:
Navigate to
http://key2.keys.ucla.edu/vkd/GetWelcomeScreen.event
Step 2:
Select the Publish your Key option
Step 3:
Select the choose file upload prompt. Upload your key.