LogoKnowGoGo BeyondGrow
Newsroom
Why
How
Blog
News
Services
About
Store
Links
Contact
Search

Buy Gold Now!
Currency CalculatorOur Rates

Site Map | Contact
Home | Legal

How to Start Using PGP/GPG to Encrypt Your Email (Windows)

What is Encryption?

When you encrypt your e-mail, it is scrambled so that only the recipient can read it. For more details, you may wish to read the GPG/PGP Public Key Encryption tutorial. However, you don't need to understand all the technical details of encryption in order to use it, just as you don't need to understand vacuum tubes and transistors in order to watch TV. The important thing to realize is that using encryption can greatly increase your e-mail privacy.

There are a few different ways you could get started using encryption. I will here explain what I think is the easiest method: to download an e-mail program and encryptor all in one integrated package, and then set it up. If you would rather continue using your existing e-mail program (such as Outlook or Outlook Express) and add encryption capabilities to it, see the Setting Up PGP tutorial.

If you find all the screenshot pictures distracting and prefer to view a non-illustrated version of this tutorial, click here.

Step 1: Download

Click here to download Thunderbird Portable with Enigmail and GPG. A box should then pop up; click the Save button. Save it on the Desktop so it will be easy to find.

Step 2: Set up Thunderbird to Recieve Email

Once the download is complete, click the Open button (or find Thunderbird_Portable_with_Enigmail_and_GPG_1.5.0.10_en-us.paf.exe on the desktop and open it that way). If a security warning pops up, click on Run.

Now it should ask you where to install. Let's install in the top level of the C:/ Drive. So just type C:/ in the white area or click the button and choose "Local Disk (C:)".

Where to put it...

Wait for it to install.

It won't take too long.

Now open My Computer. Then open Local Disk (C:). In there, you should have a folder called ThunderbirdPortable; open that. In there, you should have an item called ThunderbirdPortable.exe (or just ThunderbirdPortable). Right-click on that and choose Send To... > Desktop (create shortcut). Now close all that and go back to the desktop. There should now be a "Shortcut to ThunderbirdPortable.exe". Right-click on this shortcut, choose Rename, and type "Thunderbird" or "E-mail" to make it simpler. Open this shortcut.

Making a shortcut

Indicate that you accept the license and click Continue.

Just Accept It

Now we just go through the Thunderbird setup wizard.

  • On the first screen leave "Email account" selected and click Next.
    E-mail

  • Type your name and Email address and click Next.
    Fill in the forms

  • Type in your mail servers. If you don't know what they are, call your internet provider and they can help you. Click Next.
    Probably something like pop3.yourisp.com and smtp.yourisp.com

  • Unless instructed otherwise by your internet provider, leave the incoming and outgoing user name how they are and click Next.
    Just hit Next

  • The Account name doesn't really matter, it's just for your reference. Click Next.
    Next again

  • Click Finish.

Success

Step 3: Set up Encryption

In Thunderbird, go into the OpenPGP menu and choose Key Management. A wizard should come up (If not, go into the Generate menu and choose New Key Pair. Then just type in a passphrase and click Generate key).

Go through the easy step-by-step Enigmail wizard.

  • Choose Yes and click Next.
    Yes

  • Decide whether or not you want to sign all emails by default (you can change this preference later) and click Next.
    Next

  • On the next screen, you probably will want to leave it selected on "No, I will create per-recipient rules..." and click Next.
    No

  • Leave it selected to Yes and click Next.
    Tweak some settings, like using plain-text

  • Choose a password and type it in the boxes. You will need to type in this password whenever you send or receive an encrypted email. Click Next. Then click Next again to confirm.
    Choose a password

  • Wait as it generates a key for you.
    Come on, come on, come on...

  • You do want to create a revocation certificate, so now click Yes. Save it in the ThunderbirdPortable folder for simplicity. Then you will need to type in your password. Then click OK, and finally click Finish.
    Click Yes

In order to send someone a message, we'll need to have what's called their "public key". This is just a block of random-looking characters. Here is my public key:

-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v1.4.1
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=HPVs
-----END PGP PUBLIC KEY BLOCK-----

Select that whole block of text and copy it. Then go back to the Key Management window. Go into the Edit menu and choose Import Keys from Clipboard. A message should pop up letting you know that it worked and you now have the key for john@vcn.com.

Step 4: Sending Your First Encrypted Email

Close the key management window. Back on the main Thunderbird window, click the "Write" button. Now you can type a test message to me (or anyone else whose public key you have). Go ahead and do that.

Now, before you hit "send", look down in the bottom-right corner of your message window. Do you see the tiny pencil and key icons? Click on the key. It should turn green. That indicates that the message will be encrypted.

Since you've never written an encrypted message to me before, you will want to attach your public key so that I can reply back. Go into the OpenPGP menu and choose "Attach My Public Key" (not "Attach Public Key..."). Good, now a document called something like 0x873E3F8E.asc should be attached.
What your message should look like

Note: No one can write you encrypted messages unless they have your public key, so whenever you're writing to a new correspondent, it's a good idea to attach your public key. Otherwise, they will be unable to reply (although they will still be able to decrypt and read your message).

Click "Send". A dialog box will pop up asking you to enter your passphrase. Go ahead and type that in and click OK. If you typed it in correctly, the message should be whisked away.

That's all there is to it! Pretty fun, huh? Now your e-mail is secure in transit, safe from the prying eyes of government officials or other criminals. The next thing to do is to convince all your family and friends to use encryption as well so you can all communicate securely with each other.