|Table of Contents-zone|
PKWARE Key Maker Overview
Primary User ID
The userid value can contain a name, email address and comment; for example: Tom <email@example.com>
Used to identify a particular OpenPGP key by its unique key ID. The short KeyID (displayed first) are the last eight characters of the Fingerprint (listed below), and the long KeyID (in parentheses) are the last 16 characters of the Fingerprint
Public or Key Pair (public and private)
Number of bits in the key
Whether a key is valid, revoked, disabled, or expired
Assigns the level of scrutiny the person associated with this key gives before signing another key. When first created, the key's trust level is Unknown. Other trust levels include Marginal, Complete and None. The Implicit trust level should only be assigned to your own keys.
Date the key was created
Date the key is no longer valid
A list of encryption algorithms marked as "preferred" for people using the key. Keys made by Key Maker specify these algorithms (in order): AES-256, AES-192, AES-128, CAST5, and 3DES.
The complete unique string of characters for this key.
Common name and email address associated with this key
This field will always be UserID
Specifies the encryption algorithm used to sign the key. DSA keys can only sign. RSA keys are also used to encrypt.
Signed User ID
Identifies the key that's been signed. This value can contain a name, email address and a comment of the signee.
Name (and often the email address) of the signer.
Signer Key ID
The unique eight-character ID for the signer
Date the signature was created
Expiration date of the signature, if any.
The unique identifying ID for the subkey
Specifies the algorithm used to encrypt the subkey. RSA, ElGamal, or DSA (if this is an additional signing subkey)
Date the subkey was created
Date the subkey is no longer valid
The length (in bits) of the subkey
Whether the subkey is expired or revoked
Setting a Non-Default Keyring Location
- Click Import from the button bar (or select Import from the Keys menu).
- Browse to the location of the key to import.
- By default, Key Maker displays All Keyring Files in the Import window. Use the Files of Type drop-down menu to select just OpenPGP files (with the .pgp or .gpg extension), or Armored files (with the .asc extension). ASCII armor (Radix-64) is a character format that creates an ASCII character stream that could be used in transferring OpenPGP files through transport mechanisms that can only handle character data (for example, email body text).
- Click Open to import the selected key.
Key Maker Command Reference
The Key Maker graphical interface lets you perform common and simple tasks with OpenPGP keys.
Key Maker on the command line (included in SecureZIP Server eBusiness Edition) has many more capabilities and options, but also does the basic tasks that the graphical interface handles. This table identifies the equivalent CLI commands.
Add a UserID to a Key
|Task||CLI Command||GUI Equivalent|
|Generating OpenPGP Keys||generate||Keys > Create New Key-pair OR New Key|
|Add a UserID to a Key||edit||Keys > Add New UserID OR Add User|
|Signing OpenPGP Keys||sign||Keys > Sign OR Sign|
Keys > Export OR Export
|Importing Keys||copy||Keys > Import OR Import|
|Remove a Key from a Keyring||delete||Keys > Remove OR Remove|