To get started with PGP, you must have at least one private/public keypair in your "My Keys" collection. If you have already have a private/public keypair in some other PGP software, you can export it from that software and import it into MOVEit Central. Otherwise, you should generate a key. Use the Create button to create a new key:
In the Create Key dialog, you will be prompted for these items:
Key Length - the length of the key in bits. The longer the key, the more secure it is, but the more processing time is required for cryptographic operations. 1024 bits is probably enough, but many experts prefer 2048 bits to play it safe. 4096 bits is quite long; generating a key of this length may take over 10 minutes.
Key Format - Both RSA and DSS/DH (Digital Signature Standard / Diffie-Hellman) are widely supported. "RSA Legacy" may be necessary if you are exchanging encrypted files with someone who is using a very old version of PGP.
Signing Alg - The hash algorithm used for signing the key. The default for DSS keys is SHA1, because some older PGP applications do not support algorithms other than SHA1 for DSS keys. The default for RSA keys is the more secure SHA256, but you may need to choose SHA1 for backwards compatibility with older applications. For the best security, you may wish to choose SHA512. You may not configure the hash algorithm used to sign RSA legacy keys.
Expiration - Shorter expiration times are more secure, because they reduce the amount of damage that could be done if an opponent somehow gains access to your key. However, shorter expiration times are less convenient, because when the key approaches its expiration date, you must generate a new one and send its public component to your correspondents.
Key Name - This is an arbitrary name associated with the key. It is similar to the Common Name on an SSL certificate.
Email Address - If provided, this is incorporated into the name of the key. Despite its name, this field is usually not used to address PGP-encrypted email, but instead serves as a point of contact for technical issues involving that PGP key.
Passphrase - The passphrase used to encrypt the secret key. MOVEit Central will record this passphrase in its encrypted settings file, so you do not have to reenter it when signing or decrypting files. This passphrase will also be displayed each time a private/public keypair is exported.
