OpenPGP is an Internet standard for securely sending messages over insecure networks like the Internet. It provides end-to-end encryption by combining asymmetric and symmetric cryptography. Trust in any networkcomponent except the sender’s and receiver’s computer is not needed. Furthermore, it guarantees for the integrity of messages using digital signatures. OpenPGP also provides a system for verification of the identity of partici pants of an communication using a trust model called the Web of Trust. In this thesis we give an overview of the principles of OpenPGP and its underlying Internet standard, the OpenPGP Message Format. Additionally, we explain in which ways OpenPGP implementations are used, its functionalities and inner workings. Furthermore, we show an example on the basis of our implementation of the OpenPGP standard in Java using the IAIK-JCE cryptographic library. We also discuss considerations regarding security and usability.
|Publication status||Published - 2015|