Encrypted messaging & PGP key creation.
Discreet.Email supports Pretty Good Privacy (PGP) encryption for your secure data communications. We use PGP for signing, encrypting and decrypting both emails & attached files to ensure the security of your communications. The specific version used by Discreet.Email is OpenPGP an open source version of PGP, which is considered one of the most secure solutions. We support both 2048 bit & 4096 bit level encryption keys.
Unlike other secure email providers, we offer both user-controlled key based encrypted communications for your recipients who maintain their own PGP keys and soon to be released gateway based encrypted communications for your recipients who don't have access to PGP tools and prefers to receive a web link to view your encrypted message to them.
To Utilize Key Based Encrypted Communications:
Step 1: Login to your account as you would normally at https://webmail.discreet.email
Step 2: Navigate to Settings>PGP Keys> and then select the "Create" Icon
Step 3: Make sure the identity that matches your email address is turned on. Select your "Key size." For most people the default 2048 bit is fine. Then enter a password you will remember and write it down. We can not recover this password for you and it must be entered each time you sign, encrypt or decrypt a message. Then select the "Save" button at the bottom. You have now created a Public and Private (Secret) set of PGP keys for your email address. A confirmation will be displayed in the lower right.
Please Note: You must exchange Public keys for someone to send you and for you to send them encrypted messages. You use your Private (Secret) key to decrypt received encrypted messages. Do NOT share your Private (Secret) key with anyone, but it is recommended that you "Export" a copy of both keys and store them in a safe offline location (e.g. USB thumb drive). If you go back to the same UI location you can see your keys & Export them.
Step 4: Now that you have created your PGP keys you are ready to use them. If you have not already done so please attach your Public key to an unencrypted email and send it to the recipient you want to communicate with. Then Compose a new email and send it to the person you want to communicate with securely by selecting the digital signing and encryption options.
Please Note: If you have never imported the recipients Public key you will be asked to search for it. If they have not registered their Public key on one of the standard key servers. You will receive an error message in the lower right corner and you must have them send it to you attached to an unencrypted message just like you have to them. You are then able to import their Public key and send encrypted messages back and forth. There is no danger if Public keys are exposed. This is why they are called Public.