Silk Road forums

Discussion => Security => Topic started by: rundat on May 24, 2012, 11:53 pm

Title: pgp encryption of buyer adresse
Post by: rundat on May 24, 2012, 11:53 pm
Gi. I read the wiki on pgo. it mentions/recommends using pgp encryption of the buyer adress. But i 1) can figure out how that would work?
2) couldent find any how to in the wiki.

Wouldent using tornote be fairly safe. I mean by linking to a tornote in the buyer addr.field message with buyer adresse in it. that self destructs after seller se it?
Title: Re: pgp encryption of buyer adresse
Post by: ralph123 on May 25, 2012, 02:05 am
keep researching bro you'll figure it out. PGP is confusing at first but after you get the hang of it, it becomes easy as hell. There are some youtube vids on how to use it
Title: Re: pgp encryption of buyer adresse
Post by: HassleHoff on May 25, 2012, 04:30 am
It is pretty simple and well worth the time to learn. Using PGP protects you in case silkroads servers are compromised. Once you get PGP set up you need to add the 'public key' of the vendor you want to order from to your keyring, its usually posted on their vendor page. Then you use that key to encrypt your address or other sensitive information and cut and paste it into the address box on the order form.  If Silkroads servers are being monitored or are seized, presumably that encrypted information will not be accessible to LE.
Title: Re: pgp encryption of buyer adresse
Post by: endorfin on May 25, 2012, 06:21 pm
Here's the part that had me confused (I'm simple minded anyway) for a while.

This isn't a step-by-step how-to, it's just the part of the concept that eluded me for quite a while. Hope it helps...

When you install your encryption software you now have a tool to wrap your message within the sellers public key which is posted on the seller's profile on SR.
Copy the sellers public key and import it into your encryption software, then write your message then click encrypt.

Notice the sellers public key says public key in the header.
Notice that your encrypted message says message in the header.

Then you just paste your encrypted message into the order box on SR. The seller will unwrap your message using his public and private key in the sellers encryption software.

Title: Re: pgp encryption of buyer adresse
Post by: Kappacino on May 25, 2012, 06:27 pm
PGP works in that you have what's called a Key, and a password that corresponds to that key.

Messages are then encrypted using an individual key, and messages encoded with that key can only be unlocked with the corresponding password.

So say a vendor wants your address in pgp, you get their key, import it into gpg (there is a pictorial guide here on the forums), then enter your address onto the clipboard, and encrypt it using the vendors key. Then you send the vendor the encrypted text and they decrypt it with their password.