This guide will show you how to securely encrypt and send messages to and from your friends/family with reasonable belief no one else would be able to intercept your messages. This tutorial uses Mailvelope and Gmail.
How It Works:
- You use one password to generate two keys: a public key and a private key
- You send/share your public key (NEVER private key) with contacts
- Vice-versa, contacts send you their public key to import (similar to adding them into your address book)
- You encrypt the message to your contact(s) with their public key
- They receive it
- They click on it and type in their passphrase
- The message is decrypted and they can read it
The above steps are made easy with an extension called Mailvelope. It works well in Chrome, and it is still in heavy development for Firefox.
- An email account with Gmail, GMX, Yahoo, or Outlook
- The Mailvelope extension (Chrome | Firefox: still under development and buggy)
- No need to migrate to another email service
- Email hosts cannot analyze the contents of your messages to generate relevant ads
- Keep sensitive email messages secure while in transit and from the email host
- Difficulty in searching for the specific message due to encryption (can be avoided by using descriptive but vague subject lines)
- Low adoption/usage rates, translating into few people you are able to send/receive encrypted messages with (but we can change that today!)
- You likely won’t be able to read encrypted messages easily when you’re on a different computer (e.g. cybercafe)
Installing and Setting Up Mailvelope:
- Install the Mailvelope extension (Chrome | Firefox: still under development and buggy)
- Click on the Mailvelope icon in your toolbar and click on Options
- You will see the below page:
- Click on Generate Key
- Fill out your name (recommended to abbreviate your name or use a nickname), email, click on Advanced and select 4096 for the Key size, and enter a secure passphrase (mix of letters, numbers, and symbols and at least 16 characters long)
- Click on Submit
- Click on General
- Tick “Rich Text Editor” if you would like to be able to format your message, insert links and/or images
- For “Primary Private Key“, select the key you generated in step 6.
- Click Save
- Click on Security in the navigation menu
- Change the three character Char Code to something of your choice
- Select a custom color
- Click Save
- Click on Display Keys to view your generated key:
- To export your public key (to share with your family/friends to be able to send encrypted messages to you), click on your key and click on the Export button:
- Select and copy everything inside the textbox to your clipboard. You could also save it as a file.
Importing Public Keys:
In order to send encrypted messages to contacts, you have to import their public key. Here’s my public key!
- Copy and paste the entire public key to your clipboard:
- Click on Submit
Sending Encrypted Email Messages:
Before you send encrypted email messages, make sure you have imported your contact’s public key in the steps above!
- Log into Gmail
- Compose a new message
- Note that the notepad + pen icon will fade in. Click on it.
- Type in your message:
- Click on the Lock icon when you’re done writing your message
- Click on the dropdown menu and #1, select which friend(s) you’d like to send the message to. Then #2, click on “Add“. Repeat for all the contacts you’d like to send the message to.
- When you are done, click on “Ok“. The message will be encrypted:
- Click on “Transfer” to transfer your encrypted message to the Gmail message box:
- Type in the email addresses of the contact(s) you added in step #6 (To, Cc, or Bcc), with a subject line
Reading Encrypted Messages:
- Open an encrypted message from a contact that was signed with your public key
- An envelope with a lock icon will appear over the encrypted message. Click on it.
- Type in the password you generated your private and public keys in Installing and Setting Up Mailvelope step #5.
- The message will be decrypted, with your three character code as a watermark to show its authenticity:
And that’s it! You’re off to the races in terms of secure communication and regaining control over your privacy.
Don’t have anyone to communicate securely with? I’ve posted up my public key here.