Note: PGP Keys is a licensed feature, and depends on the installed MOVEit Automation edition. The license determines the features that you can access.

Use this dialog box to create a private/public keypair in your Private keys collection.

To access this dialog box:

Click RESOURCES > Keys and Certs > Create > PGP Key .

PGP Key Field

Description

Friendly Name

Name that appears in the list of Keys and Certificates.

Email Address

Optional. If provided, is included in the friendly name of the key.

The address is not usually used to address PGP-encrypted email, but provides contact information for technical issues regarding the PGP key.

Format

Supported formats:

  • RSA
  • DSS/DH (Digital Signature Standard / Diffie-Hellman).
  • RSA Legacy - might be necessary if you are exchanging encrypted files with someone who is using a very old version of PGP.
Note: The previous PGP module for MOVEit Automation , Authora EDGE PGP Library, has been replaced by Didisoft OpenPGP Library for .NET in order to address various limitations. Didisoft does not support generating RSA Legacy keys, which is supported by EDGE SDK. For backward compatibility, this option is still available. However, if you attempt to generate an RSA Legacy key using the new IPSP/Didisoft components, you receive the error message "This version of MOVEit Automation doesn't support generating xxxxx keys".

Length

Length of the key in bits. Longer keys are more secure but require more processing time for cryptographic operations.

Options:

  • 1024 bits
  • 2048 bits (usually preferred)
  • 3072 bits (DSS format only)
  • 4096 bits - generating a key of this length might take over 10 minutes (RSA and RSA Legacy format only)

Signing Algorithm

Hash algorithm that is used for signing the key. Cannot be selected for RSA legacy keys. Options:

  • SHA1 - Default for DSS keys. Some older PGP applications support only SHA1 for DSS keys.
  • SHA256 - More secure. Default for RSA keys. For compatibility with older applications, you might need to select SHA1 for RSA keys.
  • SHA512 - Provides the best security.

Expires After

Specify a number and unit (Days or Years).

Shorter expiration times are:

  • More secure - Reduces the time available for an opponent who gains access.
  • Less convenient - When the key approaches its expiration date, you must generate a new key and send its public component to your correspondents.

Password and password confirmation

Used to encrypt the secret key.

The password is recorded in the MOVEit Automation encrypted settings file, so that you do not need to reenter it when signing or decrypting files.

See also: