Manage PGP Keys in Oracle Fusion
Oracle Fusion Security Console allows a convenient way to manage the PGP keys. Let me walk you through the process.
Pretty Good Privacy is an encryption program that provides cryptographic privacy and authentication for data communication. PGP is used for signing, encrypting, and decrypting texts, e-mails, files, directories, and whole disk partitions and to increase the security of e-mail communications. Phil Zimmermann developed PGP in 1991.
— Source Wikipedia
Navigate to Security Console : Tools > Security Console > Certificates
You will see two options here.
- Import: Import existing PGP keys
- Generate: Generate new PGP Keys
Let’s click on Generate button to generate new PGP Keys. Select / Enter the following information
- Certificate Type as PGP
- Passphrase (remember this, needed in export step)
- Key Type as RSA. (The other option is DSA)
- Key Length as 2048. (The other options are 512 and 1024)
- Encryption Algorithm as AES256 (the other option is AES128).
Click on “Save and Close”.
Upon Save you should see the new PGP Key listed in the certificates tab. Click on Action button and you will see :
- Export (Public Key, Private Key)
Go ahead and export the Public Key and Private Key to your local system.
When you try exporting the Private Key, fusion will prompt you to enter the Passphrase.
You will notice the PGP keys have an extension of “.asc”. You will also notice a text file that I have placed in the same directory. We will be testing the keys by encrypting and decrypting the file.
Test the Keys Locally
Download and install the PGP Tool utility. Open the PGPTool utility and encrypt the Document.txt file.
When you open the tool for the first time, it will prompt you to import / create a key. Lets click on Key Ring > Import PGP Key
Navigate to the folder where you have saved the public and private key downloaded from Fusion. Select the “private” key and then click on Choose.
The above operation will create the key in the Key Ring. Now let’s go ahead and encrypt the file.
Click on Encrypt File, navigate to the folder and select the file and click Choose. Review the information in the next screen and click Encrypt.
You should now see an encrypted file in the folder. If you open the file in a text editor, you will notice that the data has been encrypted.
Click on Decrypt File, navigate to the folder and select the encrypted file and then click Choose. Enter the passphrase in the next screen and then review the information in the following screen and click Decrypt.
You should now see a new text file. Open the file in a text editor and you will notice that the file has been decryted.
This was a really quick blog on how you can use Fusion Security Console to manage your PGP keys. I hope you found this helpful. Let me know your feedback.