Encrypt reports using the OpenPGP algorithm. OpenPGP uses public key cryptography. Each recipient can be assigned a UserID which corresponds to their Public certificate. Download the Gpg4Win suite from www.gpg4win.org and install it. It will need to be installed on both the computer where the distributing installation of NPrinting is and all the computers of recipients who will need to receive encrypted reports. Gpg4Win is a free suite of applications that includes GnuPG and Kleopatra which allow you to:
- Create and manage certificates
- Encrypt and decrypt files and e-mail messages
Creation of a certificate or key pair needs to be carried out on the computer for each recipient that you will need to send encrypted reports to. You then need to collect the public key from each of those recipients and import them with Kleopatra on the distributing installation of NPrinting. You must then activate encryption for the respective recipient in NPrinting. The public key will be used to encrypt the reports distributed by NPrinting to that recipient if encryption is activated.
Create a New Certificate
Open Kleopatra, a component of the suite, and:
- Click on File
- Click on New Certificate... or press Ctrl+N
Choose Which Kind of Key Pair to Create
Select Create a personal OpenPGP key pair unless there is a reason to prefer using the X.509 standard.
Enter Your Details and Open Advanced Settings...
- Enter your Name
- Enter an EMail address
- Enter any information you would like to distinguish this certificate from others
- Click on Advanced Settings...
Select Advanced Settings
- Vary encryption algorithm and the key length, establish a certificate expiration date, or set other parameters to suit your needs
- Click on OK.
Enter Some Gibberish and a Passphrase
- Enter a series of random characters
- Enter a Passphrase
- Click on OK
Export Your Certificates to a Convenient Folder
- Browse to the folder where you want to keep your keys and enter an appropriate File name for the Key file
- Click on Save
This file can now be sent as an attachment to e-mail.
Once the distribution point for NPrinting report generation and distribution has received a public certificate/key, the key must be imported by Kleopatra
Import Another User's Public Key
When you receive Yet Another's Public Key, import it with Kleopatra by opening Kleopatra and clicking on Import Certificates.
Conclude Certificate Import
Click on OK.
Now encryption can be activated for the recipient, Yet Another, in NPrinting.
Be Ware of Certificate
When you use a public certificate that you have imported but not certified as authentic, this warning pops up. You can use the public key by answering 'y'es, but this warning will pop up every time you use this key until you certify it as authentic. The procedure for certifying the key follows.
Begin Certification Process
- Right click on the certificate(s) in the Imported Certificates window to bring up the contextual menu (you can select more than one)
- Select Certify Certificate
Select Certificates to Be Certified
- Select the user IDs that you desire to certify (there may be more than one)
- Put a check mark in the I have verified the fingerprint box by clicking on it
- Click on the Next button
Make Your Certification Public or Keep It Private
- Select from among your certificates, if you have more than one, to sign with
- Select whether to make your certification private or public
- Click on the Certify button
Enter Secret Key Passphrase
- Enter the Passphrase set when creating the secret/public key
- Click on the OK button
Look for Certified Key under Trusted Certificates
When you click on the Lookup Certificates on Server button, the certified certificate will be under the Trusted Certificates tab
Open Yet Another Recipient
Open an NPrinting file in NPrinting if one is not already open.
- Select Recipients in the lower left pane of NPrinting
- Select Recipients in the upper left pane
- Find Yet Another in the recipient list and double click on the item
Activate Encryption for User Yet Another
- Enter a check mark in the Enable Encryption box by clicking on it
- Enter the Name for the certificate from Kleopatra in the User Id field
Conclude Enabling Encryption
Click on Save and Close
From now on, all reports distributed from this installation of NPrinting to recipient Yet Another will be encrypted. If encryption becomes unnecessary, reopen Yet Another's recipient file and uncheck the Enable Encryption box by clicking on it. If some encrypted and other unencrypted reports need to be distributed to Yet Another, then two Yet Another accounts will need to be created, e.g. Yet Another encrypted and Yet Another unencrypted.
Get Practical Experience
Run a task that sends an encrypted report to Yet Another and continue on.
Decrypt an Encrypted Report
- Right click on the encrypted report file identifiable by the .gpg extension
- Click on Decrypt and verify
Set Parameters for Decrypting and Verifying
- Check and modify decryption and verification parameters
- Check and modify Output parameters
- Click on Decrypt/Verify