WEBVTT

00:01.140 --> 00:08.700
Now that we have our key pair generated, the next step is to share our public key with the people that

00:08.700 --> 00:16.650
we want to receive encrypted messages from so that they can encrypt messages using our public key so

00:16.650 --> 00:23.220
that we will be the only people that can decrypt these messages because we have the private key.

00:23.850 --> 00:28.160
So in order to do this, you need to come to your passwords and keys.

00:28.170 --> 00:34.530
Like I said, you can access this from applications, utilities and click on passwords and keys.

00:34.800 --> 00:41.250
As you can see, I have it already opened and I already selected my key pair, which I created in the

00:41.250 --> 00:42.360
previous lecture.

00:42.510 --> 00:48.780
Now, in order to export the public key, now keep in mind we're exporting the public key, not the

00:48.780 --> 00:49.590
private key.

00:49.590 --> 00:53.640
We never share the private key, hence the name private key.

00:53.730 --> 00:55.980
So we're going to go to file.

00:56.010 --> 01:02.910
We're going to click on export and you need to select the location where you want to store your public

01:02.910 --> 01:03.300
key.

01:03.300 --> 01:10.380
And now I'm going to select my Tor browser directory because I want to share this through email.

01:10.380 --> 01:12.180
So I want to add it as an attachment.

01:12.180 --> 01:17.400
And as we know, the Tor browser can only access the Tor browser directory entails.

01:17.400 --> 01:22.080
That's why I selected this directory, but you can store it anywhere you want.

01:22.860 --> 01:27.810
Now I'm also going to change the format from BGP to merge BGP.

01:27.930 --> 01:30.300
This won't really make a big difference.

01:30.300 --> 01:35.850
The reason why I'm doing this so that I can show you the content of the key as plain text.

01:36.390 --> 01:37.800
So we're done here.

01:37.800 --> 01:39.750
I'm going to click on export.

01:40.730 --> 01:41.440
And that's it.

01:41.450 --> 01:42.170
It's done.

01:42.470 --> 01:44.750
So if I go to my home directory.

01:46.050 --> 01:48.030
And go to Tor browser.

01:49.100 --> 01:57.380
You can see we have a file called John Wick Dot SC and this is my public key that I can share with anybody

01:57.380 --> 02:00.560
so that they can encrypt data and send it to me.

02:01.250 --> 02:04.700
Now you can literally attach this file the way it is.

02:04.700 --> 02:09.530
You can upload it to a file sharing service like I showed you or use onion share.

02:09.530 --> 02:12.410
You can use any method of sharing this file.

02:12.800 --> 02:20.030
If you don't want to share it as a file, you can also right click it select open with other application,

02:20.300 --> 02:26.630
select view all applications and select your text editor to open it with a text editor.

02:27.110 --> 02:29.900
If I click on Select here, you'll see.

02:29.900 --> 02:33.470
We'll be able to read the file as normal text.

02:33.470 --> 02:40.280
And this way you can literally copy all of this and paste it anywhere you want.

02:40.280 --> 02:46.910
So like this you can share the key without having to upload the file or attach it anywhere you can copy

02:46.910 --> 02:52.700
this text, send it as an instant message printed on a piece of paper and give it to someone.

02:52.700 --> 02:56.510
You can do anything you want with it, so you have two ways of sharing it.

02:56.510 --> 03:03.110
You can literally copy this text and send it to the person that you want to receive encrypted data from.

03:03.110 --> 03:05.990
Or you can attach this file right here.

03:06.440 --> 03:09.950
And like I said, you can use any method of communication.

03:09.950 --> 03:12.080
It doesn't really matter how you send it.

03:12.860 --> 03:16.940
Now, just as an example, I'm going to be sending this as an email.

03:17.120 --> 03:22.130
So I've already logged in into my web mail, as you can see in here.

03:22.250 --> 03:24.770
And what I want to do is send a message.

03:24.770 --> 03:31.520
So I'm going to click on Compose, I'm going to put the email of the person I want to send this to.

03:31.520 --> 03:38.930
So I'm sending this to another email account that I own for David Smith at Elwood dot NW.

03:39.560 --> 03:48.080
I'm going to set the subject and I'm going to call this my PGP Key, and then you can write anything

03:48.080 --> 03:49.850
here if you wanted the message.

03:50.420 --> 03:54.110
So we're going to say, please find my PGP Key below.

03:55.560 --> 04:01.380
And you can literally just paste all of the text that you copied in here, like I said, and then they'll

04:01.380 --> 04:07.770
be able to use this key as text to encrypt data to you, and we'll see how you can do that.

04:08.610 --> 04:11.310
This is the first method of sharing your key.

04:11.340 --> 04:16.690
Like I said, you can also share the key file that we exported to do that.

04:16.710 --> 04:18.150
We're going to use an attachment.

04:18.150 --> 04:23.050
So again, I'm going to click on Browse and select the key file that we have in here.

04:23.070 --> 04:29.250
We're already in the Tor browser directory, so you just double click this and that's added to the attachment.

04:29.370 --> 04:32.290
Now, like I said, you don't need to send both.

04:32.310 --> 04:38.010
I'm just showing you both here as an example, but only sending the key as a file or as text.

04:38.010 --> 04:43.410
In here is enough for the other person to start encrypting data for you.

04:43.950 --> 04:48.360
Not only that, but you can even add this key to your signature.

04:48.360 --> 04:53.160
So every time you communicate with someone, they will see your public key.

04:53.160 --> 04:58.650
And if they wanted to, they can encrypt the data that they're sending to you using your public key.

04:58.650 --> 05:02.640
And this way, nobody can read this data except you.

05:03.390 --> 05:08.970
A lot of people even put this in their profile page, in forums and even in markets.

05:08.970 --> 05:15.660
So if you click on a certain account, you'll probably see their PGP key pasted like this so that when

05:15.660 --> 05:19.770
you communicate with them, you would use this key to encrypt the data.

05:19.770 --> 05:26.700
And that way they will be the only people able to read the message because you encrypted it using their

05:26.700 --> 05:27.580
public key.

05:27.600 --> 05:34.140
So the whole idea is you want to share this with anybody that might want to communicate with you so

05:34.140 --> 05:39.960
that when they send you something, you will be the only person able to read what they sent you.

05:40.650 --> 05:42.150
So we have the key here.

05:42.150 --> 05:43.290
We have it attached.

05:43.320 --> 05:45.510
We've already set the email on the subject.

05:45.510 --> 05:49.680
So I'm just going to click on Send to send this email.

05:51.900 --> 05:53.970
I'm going to go to the other computer.

05:54.000 --> 05:58.710
This is David's computer, the person that is supposed to send messages to John.

05:58.800 --> 06:02.870
As you can see, I'm already logged in to the email account as well.

06:02.880 --> 06:06.600
I'm going to refresh to see if I got anything in my inbox.

06:07.110 --> 06:09.360
And as you can see, I have a new message.

06:09.360 --> 06:11.100
We're going to go to the inbox.

06:12.090 --> 06:14.520
And this message is coming from John Wick.

06:14.520 --> 06:15.150
Perfect.

06:15.150 --> 06:16.680
So we're going to click on it.

06:18.750 --> 06:19.140
Again.

06:19.140 --> 06:24.660
As you can see, we have the key in both forms as an attachment and as text.

06:24.990 --> 06:26.940
So now this is David.

06:26.940 --> 06:33.790
And if we go back to our diagram, David is the person that wants to send an encrypted message to John.

06:33.810 --> 06:37.260
So what John did is he created a key pair.

06:37.290 --> 06:39.540
He sent John the key pair.

06:39.540 --> 06:41.840
So we have the key right here.

06:41.850 --> 06:47.820
What we need to do right now is download the key, and in the next lecture I'll show you how we use

06:47.820 --> 06:49.500
it to encrypt the message.

06:49.830 --> 06:52.860
So let's go ahead and download the key.

06:52.860 --> 06:55.360
So we have it in here as an attachment.

06:55.380 --> 07:01.950
All we have to do is click on download and as usual, if you click on Save, this will only allow you

07:01.950 --> 07:06.980
to save it in the Tor browser directory and it's called John Wick Dot ISC.

07:06.990 --> 07:09.630
So I'm going to click on Save to save it there.

07:11.490 --> 07:14.130
And if we go to our home directory.

07:15.110 --> 07:16.850
Go to Tor browser.

07:17.180 --> 07:20.240
You will see we have the key saved right here.

07:20.930 --> 07:26.660
Now I'm actually going to remove this because I also want to show you how to download the key.

07:26.660 --> 07:31.220
If it was sent as plain text, if it was not sent as an attachment.

07:31.220 --> 07:34.870
So we're going to assume that you just got the key like this as text.

07:34.880 --> 07:40.970
So if you want to save a key that you got it like this, for example, if you got it as an instant message

07:40.970 --> 07:48.110
or if you saw it on a forum or on an account where the user was sharing their public key so that you

07:48.110 --> 07:49.940
can encrypt messages for them.

07:50.240 --> 07:57.230
In that case, if you want to start sending encrypted messages to this person using this key, you want

07:57.230 --> 08:03.590
to make sure, first of all, you copy the whole key from the start here all the way down to the end.

08:03.800 --> 08:09.050
I'm going to right click and copy and then you want to open a text editor.

08:09.050 --> 08:14.480
So we're going to go to accessories, we're going to open our text editor.

08:15.020 --> 08:18.530
We're going to paste everything that we copied in here.

08:18.980 --> 08:22.550
We're going to save control SX or click here.

08:23.030 --> 08:26.650
And you want to store this in any location that you want.

08:26.660 --> 08:29.600
Now, you don't really have to put it into our browser.

08:29.600 --> 08:37.760
I'm just going to put it there anyway and we're just going to call this John Wick again, dot a C,

08:38.210 --> 08:42.950
we're going to click on Save and again, we have the file.

08:42.950 --> 08:49.340
Now if we go back to this directory, we have the file, the John Wick Dot, ISC, and inside it it

08:49.340 --> 08:52.880
has the content of the public key of John.

08:53.990 --> 08:58.700
Now all we have to do is import this public key to our keyring.

08:59.000 --> 09:02.630
To do that again, we have to open the passwords and keys here.

09:04.510 --> 09:06.310
And we're going to go to file.

09:07.060 --> 09:11.680
Import and select the key that we want to import.

09:11.860 --> 09:15.930
If you couldn't see it here, then make sure you go to the location where you downloaded it.

09:15.940 --> 09:18.100
So in my case it was into our browser.

09:18.100 --> 09:21.070
And again, we have the key that we want to import in here.

09:21.580 --> 09:22.840
Click on Open.

09:23.920 --> 09:26.220
It's going to show you the information of this key.

09:26.230 --> 09:32.950
Again, like I said, remember I said, anybody who has access to this public key will be able to see

09:32.950 --> 09:34.150
your email address.

09:34.150 --> 09:40.360
And as you can see, we can actually see John's email address right here and we can see his name right

09:40.360 --> 09:41.500
here, John Wick.

09:41.530 --> 09:47.110
That's why it's very important to use your anonymous or fake identity in here.

09:48.010 --> 09:50.500
We're going to click on import to add this key.

09:51.710 --> 09:59.630
And now if we click on our GnuPG keys, as you can see, we have John Wick as an entry in here.

09:59.630 --> 10:05.580
And as you can see, John Wick in here has an icon of one gold key.

10:05.600 --> 10:09.440
We don't see the icons going back to John's computer.

10:09.440 --> 10:15.920
If we go to the passwords and keys in here, you can see John has two keys in here because this is a

10:15.920 --> 10:16.570
key pair.

10:16.580 --> 10:20.090
John has his own private key and the public key.

10:20.090 --> 10:24.770
But at David's computer, David only has the public key.

10:24.770 --> 10:28.430
And that's why we see only one gold icon in here.

10:29.150 --> 10:35.570
Again, if you right click this and go to properties, you'll be able to see the name and the email

10:35.570 --> 10:36.770
of the key owner.

10:36.770 --> 10:39.980
You can see the key ID and clicking on details.

10:39.980 --> 10:45.230
You can see the fingerprint, which, like I said, can be used to verify the owner of the key.

10:45.230 --> 10:48.710
And we'll talk all about that later on in the course.

10:49.480 --> 10:55.930
For now, we have imported the public key of the person that we want to communicate with.

10:55.960 --> 11:00.640
So right now, we can start encrypting data and send it to John.

11:00.640 --> 11:08.140
And the only person that will be able to see the content of this data is John, because he is the only

11:08.140 --> 11:10.450
person that has the private key.