PGP configuration

PGP is available only for File, SFTP from Cloud connection points.

Pretty Good Privacy (PGP) is an encryption standard that provides cryptographic privacy and authentication for data communication. PGP is used to sign, encrypt, and decrypt texts, emails, and files.

PGP encryption uses a sequence of hashing, data compression, symmetric-key cryptography, and public-key cryptography. Each step uses one of several supported algorithms. Each public key is bound to a user name or an email address.

PGP uses two types of keys:

  • Public key
    This key encrypts the message. To send encrypted messages, use the recipient's public key to encrypt the message. Signature verification is possible only when a document includes a signature. Documents without signatures cannot be verified.
  • Private key
    This key decrypts the message. Only the owner has access to the private key. Therefore, only the owner can decrypt the message.
Note:  Upgrading the BouncyCastle library from version 1.x to 2.x introduces a processing limit for 3DES. Files encrypted with 3DES must be smaller than 512 KB. Support for 3DES is to be discontinued in future releases.

Sending an encrypted message from Alice to Bob

  1. Bob generates a public and private key pair.
  2. Bob shares his public key with Alice.
  3. Alice encrypts the message by using Bob's public key.
  4. Alice sends the encrypted message to Bob.
  5. Bob decrypts the message by using his private key.

    Two key pairs are required for bidirectional PGP communication.