Generating GPG keys

If you don’t already have GPG keys for encryption/decryption, you’ll need to generate some.

A number of guides online can walk you through this process, but here are some easy steps using gpg4win.

A public key is used to encrypt data, and can be safely shared to anyone.

A private key is used to decrypt data, and should only be held by you.

1. Download and install GPG4Win - https://www.gpg4win.org/download.html

2. Load Kleopatra

3. Click on File > New OpenPGP Key Pair…

4. Name your certificate with the name of your integration

5. Tick ‘Protect the generated key with a passphrase’.
   Ensure you save this passphrase so that you can decrypt your files later, otherwise, you will have to generate a new key and provide it to MYOB again.

   1. This prevents someone else from using your private key unless they know the password.

6. Click ‘Advanced Settings…'.

   1. This section is important as it will govern the type of key and the strength of the encryption.

7. The current recommendation is that you use RSA 4,096-bit key material to meet current best practice standards.

   1. This may change in future with stronger encryption standards, or you may have different corporate preferences, so please consult an internal expert to ensure that they meet your internal standard.

8. Click OK, and enter your desired passphrase.

9. Once your key is generated, export it.

   1. Right click + Export

   2. OR Ctrl+E

10. Save your XXX_public.asc public key.

11. Review the file in a text editor and ensure that it begins with -----BEGIN PGP PUBLIC KEY BLOCK-----.
    Never share your private key (the file beginning with -----BEGIN PGP PRIVATE KEY BLOCK-----) with anyone, or they will be able to decrypt your data.

12. Once you have completed the process, please email the key to your MYOB PayGlobal consultant or MYOB PayGlobal support.