'ZDNET Recommends': What exactly does it mean?
ZDNET's recommendations are based on many hours of testing, research, and comparison shopping. We gather data from the best available sources, including vendor and retailer listings as well as other relevant and independent reviews sites. And we pore over customer reviews to find out what matters to real people who already own and use the products and services we’re assessing.
When you click through from our site to a retailer and buy a product or service, we may earn affiliate commissions. This helps support our work, but does not affect what we cover or how, and it does not affect the price you pay. Neither ZDNET nor the author are compensated for these independent reviews. Indeed, we follow strict guidelines that ensure our editorial content is never influenced by advertisers.
ZDNET's editorial team writes on behalf of you, our reader. Our goal is to deliver the most accurate information and the most knowledgeable advice possible in order to help you make smarter buying decisions on tech gear and a wide array of products and services. Our editors thoroughly review and fact-check every article to ensure that our content meets the highest standards. If we have made an error or published misleading information, we will correct or clarify the article. If you see inaccuracies in our content, please report the mistake via this form.
How to add PGP support on Android for added security and privacy
Certain communications I send require extra security, also known as encryption, which most Android email clients cannot deliver. Encryption ensures the emails I send to specific recipients can only be read by those with a matching key to decrypt the contents of the email.
You'll need a third-party app for this level of security on Android. For encryption in email, you'll require a different email client, as Gmail won't cut it. I prefer Thunderbird on Android because it's an outstanding email client, works with PGP (Pretty Good Privacy), and is an open-source application.
Also: The Thunderbird email client finally landed on Android, and it was worth the wait
The app I chose for encryption on Android is OpenKeychain. This tool makes it easy to add encryption to Android.
Let me show you how it works.
Installing OpenKeychain
What you'll need: The only thing you'll need is an Android device (phone or tablet) and a valid Google account. That's it. Let's make some encryption magic.
1. Open the Google Play Store
Log in to your phone or tablet and open the Google Play Store app.
2. Locate OpenKeychain
Type OpenKeychain in the search field. When the entry appears, tap it and then tap Install to add the app to your device.
Installing OpenKeychain on Android is as simple as a single tap.
Creating your first key
The next step is to create your first key. Here's how.
1. Open the newly installed app
Swipe up on your home screen to open the App Drawer. Scroll down until you locate OpenKeychain and tap the launcher.
2. Create your key
In the main window, tap Create My Key. You will then be required to walk through a simple wizard that will have you:
- Type your name (or a nickname)
- Add an email for the key
- Optionally enable the key to be accessible via keyservers
Once you've finished the above steps, tap Create Key at the bottom right.
You can create your key and a security token -- and even import keys from files.
One of the cool things about OpenKeychain is that it's easy to share your public key (remember, a key is a pair with a private and public key). After you create your key, you can tap the entry, where you'll see options for sharing and copying.
Also: 3 ways to stop Android apps running in the background - and why I always do
For other people to send you an encrypted email, they'll have to send you their public key; for you to send others an encrypted email, you'll have to send them your public key.
You can share your key with others so they can send you encrypted messages.
With OpenKeychain, you can easily import keys (from a file) by tapping the + button on the main page and tapping "Import from File".
To import a recipient's key, tap "Import from File".
Adding encryption to Thunderbird for Android
Thunderbird isn't the only Android email app that supports encryption, but it's the one I use, so we'll be working with that tool. You can install Thunderbird for Android from the Google Play Store.
1. Open Thunderbird Settings
After you've installed Thunderbird and added your email account, tap the menu button in the upper-left corner and then tap the gear icon at the bottom of the sidebar. From the list of email accounts, tap the one you want to work with encryption.
The gear icon appears at the bottom of the Thunderbird sidebar.
2. Navigate to "End-to-end encryption"
At the bottom of the "Account settings" page, tap "End-to-end encryption".
3. Enable OpenPGP support
On the "End-to-end encryption" page, ensure "Enable OpenPGP support" is enabled by taping the On/Off slider until it's in the On position.
Make sure you're enabling OpenPGP support for the correct email account.
4. Select your key
Under the Enable entry, tap the "Using key" line and then, when prompted, select the key you want to use for encryption (this will be the key you created in OpenKeychain).
Tap "Using key" to select the key you want to use.
Return to the main Thunderbird window now that you've added PGP support. Hopefully, at this point, you've imported a PGP key from a recipient that will receive an encrypted email from you. Tap the Compose button and then tap the menu button at the top right (three vertical dots).
From that menu, tap Enable Encryption. Once you've done that, type the recipient's email address (for which you've added the PGP key), and the lock icon should turn green, which means the email is encrypted. You can now type your email and send it.
Also: 3 ways to stop Android apps running in the background - and why I always do
Remember that the recipient's email client must also support encryption. Otherwise, they'll have to save the encrypted attachment and decrypt it manually.
And there we go -- you've just added encryption to Android for an extra layer of security.