10/15/2018 - Since 2012, the EU has been providing information on the topic of cyber security as part of European Cyber Security Month (ECSM). Governikus KG is once again participating in the awareness campaign, which is coordinated in Germany by the Federal Office for Information Security (BSI). This year, as part of the campaign, the Bremen-based software house is focusing on an online service that can be used to quickly and free of charge authenticate a PGP key for secure mail communication.

  • Governikus KG participates in European Cyber Security Month, the Europe-wide coordinated awareness campaign for citizens
  • Fast, easy, and direct authentication of PGP keys with the online ID card function and the AusweisApp2
  • Service provided free of charge by Governikus KG on behalf of the BSI

One of the core messages of the ECSM is that trust is a valuable commodity on the Internet. With just a few tricks, identities can not only be disguised, but also imitated. Even PGP-encrypted communication via e-mail is no exception. Trust in a PGP key is usually established only after a personal comparison with the owner of the key or a trusted third party (web-of-trust). Governikus KG transfers this principle to the digital world and therefore offers the authentication of a PGP key using the online ID function.

At pgp.governikus.de, the personal PGP key can be authenticated quickly and free of charge using the online ID card function of the ID card or electronic residence permit and the AusweisApp2. The service is provided by Governikus KG on behalf of the German Federal Office for Information Security (BSI).

"In many areas of life, e-mail has already completely replaced the letter. Everyday communication has gone digital," says Dr. Stephan Klein, Managing Director of Governikus KG. Every day, business letters, contracts and even sensitive information are sent by e-mail - often unencrypted. "This poses risks for all parties involved, because such content can not only be evaluated by unauthorized persons, it can even be manipulated." Only through encryption, for example with a PGP key, is the content protected from this threat. Authentication also ensures that the recipient's genuine PGP key is actually being used.

Another important aspect is that an authenticated key confirms the identity of the sender beyond doubt in the case of a signed e-mail. "Only if a person proves with an identification document that he or she is who he or she claims to be, is authentication carried out," adds Dr. Klein. This ensures clarity and trust for the recipients of an e-mail, while at the same time the encryption of the content protects the transmitted information.

European Cyber Security Month is an EU-wide campaign that has been promoting information security every year since 2012. The aim is to sensitize citizens, associations and companies to the issue of cyber security and to promote responsible use in the digital space.

Characters: 2,947 incl. spaces

Share post