Child pages
  • Keymaker

Versions Compared


  • This line was added.
  • This line was removed.
  • Formatting was changed.
Table of Contents-zone

Table of Contents

PKWARE Key Maker Overview




Primary User ID

The userid value can contain a name, email address and comment; for example:  Tom <>


Used to identify a particular OpenPGP key by its unique key ID. The short KeyID (displayed first) are the last eight characters of the Fingerprint (listed below), and the long KeyID (in parentheses) are the last 16 characters of the Fingerprint


Public or Key Pair (public and private)


Number of bits in the key


Whether a key is valid, revoked, disabled, or expired


Assigns the level of scrutiny the person associated with this key gives before signing another key. When first created, the key's trust level is Unknown. Other trust levels include Marginal, Complete and None. The Implicit trust level should only be assigned to your own keys.


Date the key was created


Date the key is no longer valid


A list of encryption algorithms marked as "preferred" for people using the key. Keys made by Key Maker specify these algorithms (in order): AES-256, AES-192, AES-128, CAST5, and 3DES.


The complete unique string of characters for this key.





Common name and email address associated with this key


This field will always be UserID

Signatures tab




Specifies the encryption algorithm used to sign the key. DSA keys can only sign. RSA keys are also used to encrypt.

Signed User ID

Identifies the key that's been signed. This value can contain a name, email address and a comment of the signee.

Signer Name

Name (and often the email address) of the signer.

Signer Key ID

The unique eight-character ID for the signer


Date the signature was created


Expiration date of the signature, if any.





The unique identifying ID for the subkey


Specifies the algorithm used to encrypt the subkey.  RSA, ElGamal, or DSA (if this is an additional signing subkey)

Valid From

Date the subkey was created

Expiry Date

Date the subkey is no longer valid


The length (in bits) of the subkey


Whether the subkey is expired or revoked

Advanced Operations

Setting a Non-Default Keyring Location


  1. Click Import from the button bar (or select Import from the Keys menu).
  2. Browse to the location of the key to import.
    1. By default, Key Maker displays All Keyring Files in the Import window. Use the Files of Type drop-down menu to select just OpenPGP files (with the .pgp or .gpg extension), or Armored files (with the .asc extension). ASCII armor (Radix-64) is a character format that creates an ASCII character stream that could be used in transferring OpenPGP files through transport mechanisms that can only handle character data (for example, email body text).
  3. Click Open to import the selected key.

Key Maker Command Reference

The Key Maker graphical interface lets you perform common and simple tasks with OpenPGP keys.

Key Maker on the command line (included in SecureZIP Server eBusiness Edition) has many more capabilities and options, but also does the basic tasks that the graphical interface handles. This table identifies the equivalent CLI commands.

Add a UserID to a Key

TaskCLI CommandGUI Equivalent
Generating OpenPGP KeysgenerateKeys > Create New Key-pair OR New Key
Add a UserID to a KeyeditKeys > Add New UserID OR Add User
Signing OpenPGP KeyssignKeys > Sign OR Sign
Exporting Keyscopy

Keys > Export OR Export

Importing KeyscopyKeys > Import OR Import
Remove a Key from a KeyringdeleteKeys > Remove OR Remove