Kontakt

PGP Public Key

What is a public key?

When someone digitally signs a file, they use their private key to create the signature. You (as the recipient) can then use their public key to verify that the file hasn’t been altered and that it really comes from the person you expect.

PGP, which stands for Pretty Good Privacy, is a data encryption and decryption system that provides cryptographic privacy and authentication for communication. It’s primarily used to secure emails and files, ensuring only the intended recipient can read them. 

<Warning: Always use the public key from this page, never trust it if received from anywhere or anyone else>

Use cases

Encryption and Decryption:

PGP uses a key-pair; a public key for encryption and a private key for decryption. The sender uses the recipient’s public key to encrypt the message, and the recipient uses their private key to decrypt it. 

This is useful if you wish to securely transfer files or messages to Cyber Partners.

Digital Signatures:

PGP also allows for digital signatures, which verify the authenticity and integrity of the sender and the message. The sender creates a hash of the data, encrypts it with their private key, and attaches it to the encrypted message. 
The recipient can then verify the signature using the sender’s public key. 

This is useful if you’re receiving files, archives, media or other data from Cyber Partners and wish to verify the authenticity.


Example of file signing:

You use the public key to verify that the file matches the signature and hasn’t been modified.

  1. The sender creates a file, e.g., document.txt.
  2. The sender generates a digital signature document.txt.sig using their private key.
  3. You receive the file + the signature and obtain the sender’s public key from a trusted source. This can be the sender’s own website, a secure email, or even physically via a USB key.
  4. You use the below public key and commands, which you’ve downloaded from our website, to verify that the file matches the signature and hasn’t been modified.

Code samples

Start by importing and trusting the public key (from below) beforehand with:

<Warning: Always use the public key from this page, never trust it if received from anywhere or anyone else>

gpg --import public_key.asc

Linux Ubuntu or RHEL (with GPG)

gpg --verify dokument.txt.sig dokument.txt

Windows CMD (with Gpg4win installed) or Windows PowerShell:

gpg --verify dokument.txt.sig dokument.txt

Tip: In PowerShell, you can use gpg.exe directly if it’s not in your PATH:

& "C:\Program Files (x86)\GnuPG\bin\gpg.exe" --verify document.txt.sig document.txt

macOS (with GPG installed using for example: brew install gnupg)

gpg --verify dokument.txt.sig dokument.txt

Cyber Partners PGP Public key

<Warning: Always use the public key from this page, never trust it if received from anywhere or anyone else>

—–BEGIN PGP PUBLIC KEY BLOCK—–
mDMEabPZoRYJKwYBBAHaRw8BAQdAiyoaDYCmYiQmtSVFu5K5t01QvQN1X1OmFy1d
i6zwlU20OkN5YmVyUGFydG5lcnMgQnVuZGxlIENJIDxjaS1idW5kbGVAY3liZXJw
YXJ0bmVycy5pbnRlcm5hbD6ImQQTFgoAQRYhBDA6o02ENnahyd2WVwi4UT3JaUnG
BQJps9mhAhsDBQkFo5qABQsJCAcCAiICBhUKCQgLAgQWAgMBAh4HAheAAAoJEAi4
UT3JaUnGcoAA/RcplItbrBhU++Kr7eF/jK6pWVOOwPHcU2loymhv4T0CAP4vBcrd
6sccTjpxlSBZvH+3hgzOteet/zPqrEmTby5TCA==
=pWsz
—–END PGP PUBLIC KEY BLOCK—–