OpenPGP

Enter a topic name to show or a new topic name to create; then press Enter

Features

The OpenPGP system has a number of features which need to be implemented for compatibility. This is implemented in a library called LynxPrivacyLib which is stored at Github at https://github.com/jwdavidson/LynxPrivacyLib

The status of this library is documented below with the feature set and completion.

Encrypt / Decrypt

All data is armoured. Interoperability with GPG4Win has been confirmed for elements marked done.

  1. Sign / Compress / Encrypt File (single or multiple recipients) - done
  2. Sign / Encrypt File (single or multiple recipients) - done
  3. Decrypt/ Decompress / Verify File (single or multiple recipients) - done
  4. Decrypt / Verify File (single or multiple recipients) - done
  5. Sign / Compress / Encrypt String Data (single or multiple recipients) - done
  6. Sign / Encrypt String Data (single or multiple recipients) - done
  7. Decrypt / Decompress / Verify String Data (single or multiple recipients) - done
  8. Decrypt / Verify String Data (single or multiple recipients) - done
  9. Algorithm Agreement for Encryption, Hash and Compression - done
  10. Sign File - done
  11. Verify File - done
  12. Sign String Data - done
  13. Verify String Data - done
  14. Encrypt File with Shared Secret (may not do)
  15. Decrypt File with Shared Secret (may not do)
  16. Create / Verify Checksum Files (may not do)

Key Management

Keys may or may not be armoured. Key pairs generated with system are RSA with 4096-bit keys, using AES-256 Symmetric Keys for Encryption and SHA-512 for hashes. Preferred compression is ZLib with BZip2 and Zip following. Compression fallback is Uncompressed. Symmetric key preferences are AES-256, AES-192, AES-128 and Blowfish.. Symmetric key fallback is TripleDES. Hash Algorithms are SHA-512, SHA-384, SHA-256, SHA-224, RipeMD160 and Tiger192. Fallback hash algorithm is SHA1.

  1. Create Key Pair Files (Secret, Public) - done
  2. Import Public Key File to Key Store DB - done
  3. Import Secret Key File to Key Store DB - done
  4. Export Key to File - done
  5. Change Owner Trust - done
  6. Certify Certificate
  7. Change Expiry Date / Revoke Public Key
  8. Change Passphrase - done
  9. Add UserID
  10. Lookup / Retrieve Public Keys on Remote Server -done
  11. Send Public Keys to Remote Server - coded, but not tested

Implementation Progress

  1. Use Wizards for Task Completion - partly done
  2. Lynx Privacy Overview
  3. Form to Create PGP Key Pair - done
  4. Form for Remote Keyserver Access - partly done
  5. Form for Local Keystore Access - partly done
  6. Form to Encrypt File
  7. Form to Decrypt File
  8. Form to Encrypt Clipboard
  9. Form to Decrypt Clipboard
  10. Wizard to Create PGP Key Pair - done
  11. Wizard for Remote Keyserver Access
  12. Wizard for Local Keystore Access
  13. Wizard for Encrypting File
  14. Wizard for Decrypting File
  15. Wizard for Encrypting Clipboard
  16. Wizard for Decrypting Clipboard

  1. To do - Search Local Keyserver Results button
  2. To do - Import Selected Keys to Local Key Store button

  1. To do - Prefresh Public Keys from Keyserver button
  2. Added Import Key dialog - needs testing
  3. To do - Upload Key to Keyserver button
  4. Added Export Key dialog - needs testing
  5. Added Owner Trust dialog - needs testing
  6. To do - Filter button

  1. Added Import Key dialog - needs testing
  2. Added Export Key dialog - needs testing
  3. Added Change Pass Phrase dialog - needs testing
  4. To do - Revoke Key button
  5. To do - Expire Key button
  6. Added Owner Trust dialog - needs testing
  7. To do - Filter button

  1. To do - Select File button
  2. To do - Filter button
  3. To do - Save File button
  4. To do - Sign Only button
  5. To do - Encrypt Only button
  6. To do - Encrypt and Sign button

  1. To do - Select File button
  2. To do - Filter button
  3. To do - Save File button
  4. To do - Verify Signature button
  5. To do - Verify Signature and Decrypt button

  1. Show / Hide Clipboard button - done
  2. To do - Filter button
  3. To do - Sign Only button
  4. To do - Encrypt Only button
  5. To do - Encrypt and Sign button

  1. Show / Hide Clipboard button - done
  2. To do - Filter button
  3. To do - Verify Signature button
  4. To do - Verify Signature and Decrypt button

Miscellaneous

The backing database is SQLite. The application does not need administrative rights to install or run.

The implementation is open source using an Apache license. The OpenPGP parts are based on Bouncy Castle.


Version: 28   Revised: 2015-03-03 14:40:14 Last Updated by: 2001:470:1d:80b:5c1d:f304:5508:f0a5 Rename Show Links to Topic