Encrypt Your Gmail/Yahoo/Outlook/iCloud and Other Webmail

Encrypt Your Gmail/Yahoo/Outlook/iCloud and Other Webmail

Hey what’s up everyone. I want to give a
demonstration on how to send encrypted email. For those that don’t know, regular
email is actually not very secure at all. There’s been several cases in the news
lately where people’s emails have been hacked so I’m going to give a demonstration
using a tool called Mailvelope. It’s a free tool. It’s a great gift to the world.
Mailvelope leverages PGP another great gift to the world. PGP is an encryption
method, it’s been around for a long time and it is very effective there’s no
known way of breaking it directly so when used properly, you shouldn’t have
much to worry about. So to get it going we’re going to make
this so you can use it for your regular email like on Gmail, Yahoo, Outlook.com,
iCloud so we go to Mailvelope.com and you have to install an add-on. So I’ve
gone there and I’m going to scroll down using Firefox here. Just click on
that “allow” hit install, basic stuff now over on the right here, it’s going to say
this this lock appears it says mailvelope. Great. Click on “options” and now let’s say
I’m trying to communicate with my buddy here “Mr. Bit” and he sends a message
saying “let’s set up and encrypted email!” You actually never need to talk on the
phone, or meet in person, you can start via regular email and turn it into
encrypted emails. But what you first need to do is create a public and private key. So to do that you go to “generate key”. It will ask for your name. You can put whatever you want here but other people will be able to see it so you
don’t want to put something offensive or something you’re embarrassed about. Same thing with email although it’s a little easier if you put your real email
because it synchronizes with other address books nicely. So it’s probably
best to do that. There we go, I put in somebody’s name who definitely could
have used Mailvelope earlier this year for your settings, 4096 is
definitely what you want to use. You could use lower ones but that just
increases the highly unlikely chance that someone can break through and read
your message so 4096 is safe. You need a password, I’d recommend at least 20
characters a couple random words and maybe some numbers should probably be
safe enough but the longer the better. All right I’ve got a 21 character password now you will have to enter this
somewhat frequently, so you don’t want it to be something that’s
impossible to remember. You can upload your public key to the mailvelope server, that’s up to you — it just makes it easier for people to email you. We’re going to hit “generate”, this can take anywhere from 10 seconds to about two minutes
depending on mostly just luck but I’m going to pause while at creates
my key. It has completed, it took about 90 seconds. If I scroll up and look at my
display keys, this is kind of like a Rolodex of keys that you can communicate with. Right now I only have the account that I created but if I can dig in I’ll
see it’s actually a set of two keys there’s a public and private key I’m
going to grab both these by clicking on export you grab one or the other or both
I’m going to grab both by hitting ctrl a ctrl C paste them into two text files. And here we go. The public key is one that you can give to anybody it is there’s no risk in
handing it out you have to give it to someone for them to encrypt a message
directly to you, but there’s no harm in sending this out, putting it on an email
signature pasting it on your doorway. You’ll notice it’s shorter
than your private key over here the private key, intuitively, you want to keep
private. It says “private” up here this one says “public”. The private key is basically a direct method to decrypt all of your messages they would have to get through
the password you set up but you probably don’t want to take that chance so
protecting your private key is really critical to maintaining good privacy. So I wouldn’t even save this in plain text, in the cloud. I’d encrypted
somewhere else or hide it somewhere with it where you just don’t want to risk
losing it. But now we have a public key you want to share this with some with
your buddy or I want to share this with my buddy, so that he can send me
encrypted messages. I’m going to jump back over to Firefox and this
conversation left off here I’m just going to write back in regular text saying, “hey I have a public key here it is” and I can just paste that in there. I don’t
care if everybody under the sun reads this, I’m just going to send it because
all that allows someone to do is send me an encrypted message. They can’t read any of my messages. I’m going to jump over to that other account
here we go I’m going to hit “show” the message comes through. Mailvelope automatically recognizes any sort of PGP
information so it’s that it recognizes “Begin PGP text” public key so it’s got
the option to add in this public key so I’m just going to click this plus right here
and it says “success”. You’ll notice that if I go to the bottom here it uses the
name and the address that I gave it before so when I said be careful on
putting in some name that you’d be ashamed of, this is an example of where
it would be exposed. I mean it’s part of the software so just put in something
you expect other people to see. So now my friend can write back to me an encrypted
message so the way he does that or both of us, would be to hit “reply” and again we’re in regular Gmail here I’m in Chrome but the other wasn’t in Firefox works the same
you click on this little “compose” button and then you can start typing away. Tt
recognizes my address because I’m in the keyring and I can start typing. All right
I put in some sensitive information that I’m going to send back to myself and
I’ve also included the public key for this account down so both accounts will
have each other’s public key so they can send messages freely to each other. So
I’m going to hit “encrypt”, now by hitting encrypt it actually knows to paste this
encrypted method into the message over here so it takes this window and paste
it into here. If you get caught in between you might want to be careful
that you don’t accidentally close the window because then you can lose you
message, but I hit “encrypt” and it sends this long completely eligible message back to
my PG code Rider account so I’m going to hit “Send.” Jumping back over to Firefox there it is and I’m going to open up
that message now again mailvelope recognizes this as a PGP message so says gives me this kind of glow around the message which the message itself again
is completely illegible that Google’s trying to translate it as Danish. I don’t
know how I’d feel about that if I was Danish, but I want to click on the
envelope, and because I entered my password previously it saves it for 30
minutes but it will decipher this encrypted message it has all of the key
information so if you wanted to send all of this sensitive information you could
password Social Security numbers Mailveope allows you to do that. Now I
also sent the public key as an encrypted method which it didn’t need to be
encrypted but easy enough I’m going to copy this here and I’m going to go back
to my mailvelope here we go and I’m going to hit “import
keys” not “generate key” like I did before. So I’m just going to paste this one in there and I hit “import” and it
says down below “success” public key blah blah blah and “Emperor Trump” that was a goofy name I made for this account as well if I go back to my display keys list, I now
have two entries. I’ve got the original one I generated and I have the second
one I just copied and pasted in. You’ll notice the second one only has one key here while my original one has two. And as I’m
sure you can guess, that’s because this one has a public and private key, while
this Emperor Trump one only has a public key. My friend and I do not share each
other’s private keys with each other. Only our public keys. So now we can send encrypted messages back and forth with each other. A couple other
the random notes, if you lose your password or your private key, you’re out
of luck. Mailvelope doesn’t know your information so you have to protect that on your own. If you have more than one person on an email thread,
let’s say I had wanted to reply to a bunch of people, you can actually encrypt
it with everyone’s key so that everyone can read the message in fact when you
compose a message mailvelope will encrypt with your public key as well allowing you to read your own message, so if you’re looking at your sent mail and you want
to read it you can see what you sent to somebody else which is nice in previous
versions you couldn’t do that disadvantages are obviously you can’t
search like you would a normal gmail message but that’s a small price to pay
to have a secure messaging so again big thanks to mailveope for making a great
product and I hope you find this useful and just think you know a lot of a lot
of campaigns a lot of important people could have really saved themselves some
aggravation just using the simple tool.


7 thoughts on “Encrypt Your Gmail/Yahoo/Outlook/iCloud and Other Webmail”

  • Hi! I have downloaded this and I use att email. When I send the test email to my other email address, I don't get the key like its shown in the video. I hear you say click show and then the email will show up with the key. I don't have a option to click all I see is the the big paragraph of info I sent. I did get an email to verify the key, all I see is 2 attachments and I don't know what to open the attachments in. What am I doing wrong, I'm confused? Thanks

  • Great video! Question: I followed your instruction, but when clicking 'encrypt' I got an error message that said I don't have any primary key. what I did have is my friend's public key, but I couldn't choose to encrypt with his key. didn't have the option. any idea why? (I'm using gmail) Thanks !

Leave a Reply

Your email address will not be published. Required fields are marked *