That is correct.
Private keys are also used to sign messages and files. The related
public keys are then used to verify the signatures.

Only you have your private key and its associated passphrase. Thus,
only you can generate a signature using that key. Anyone can have your
public key; that's why it's PUBLIC. Thus, anyone can verify (but not
generate) your signature.

However, when it comes to decryption, only private keys are involved.

The word 'passphrase' is used in two contexts in PGP:

1) A passphrase is used to encrypt a private key and thus 'lock' the private
key.
2) A passphrase will be used when performing 'conventional encryption'
(encryption that uses symmetric encryption methods only).

To expand on this, in 1):

It is optional to give a private key a passphrase. When a private key has
one, you will be prompted for the passphrase before you can use your private
key. (Remember that you use your private key to decrypt messages or files
that were encrypted using your public key. You also use your private key
when signing a message or file.)

A passphrase is a relatively weak locking mechanism when compared to the
strength of strong (1024 bit) asymmetric encryption keys (e.g. RSA) or the
strong (128 bit) symmetric keys (e.g. AES). Nevertheless, assigning a
passphrase to your private key increases your security by giving you some
limited protection against someone gaining access to your private key.

To expand on 2):

When you use PGP's 'conventional encryption', you are using symmetric
encryption methods only to encrypt a message or file. Neither your PGP
public key nor your PGP private key are involved in this process. It is
called symmetric encryption because the key that is used to encrypt the
message or file is the same one used to decrypt it. This 'shared secret'
symmetric key is derived from a passphrase that you make up. If you encrypt
a message using 'conventional encryption' and then you email the encrypted
message to a recipient, your recipient will need to know the passphrase you
chose in order to decrypt the message. You will have to send him the
passphrase via some alternate secure channel. (Perhaps you can call him on
the phone and tell him the passphrase.)

Note:

A short passphrase is undesireable since it has poor security. Make your
passphrase from multiple words and consider using special characters like
'&', '%', or '#", or a mixture of uppercase, lowercase, and numbers. The
longer your passphrase, the more it begins to have a strength comparable to
1024 bit asymmetric keys or 128 bit symmetric keys. - On the other hand,
don't make a passphrase so long and complicated that you forget it.

Don't record and store your passphrase with your private key. If someone
gets his hands on your passphrase plus your private key, your security has
been completely compromised.

Having no passphrase whatsoever on a private key is considered by most
people to be unacceptable unless you can guarantee that your computer will
never be accessed by an attacker. (Consider how many notorious
lost-notebook-stories your read about in the news! Don't forget too about
spyware attacks.)

If you forget your private key's passphrase, you have effectively lost your
private key.

On 09/04/2008 03:43 AM, species8350 sent:

Snip, snip...
The pass phrase is the portal to the secret ring.

The pass phrase is a further extension of passwords while improving
entropy.

Pass phrases ideally are much longer and thereby protect the contents of
the PGP/GPG secret ring that much better. i.e. a pass phrase could be
over 100 characters long. If clever alterations to words and content
are used in a good/long pass phrase, it would make a brute
force/dictionary attacks closer to impossible, if not uneconomical.

<http://en.wikipedia.org/wiki/Pass_phrase>

<http://www.pgpi.org/doc/faq/passphrase/>

I do hope Neil Rickert and/or David Ross weigh in on this subject as
their collective knowledge is formidable.

Best wishes to you.

Your private key is critical for decryption and if anyone gets ahold of it
( eg via a breakin on your computer) they can read all you r mail. The
passphrase is used as a key to protect your private key using regular
ecryption. Then if someone breaks in they have to not only steal your
private key file but also get your passphrase to decrypt that private key
file. Mind you if they have broken into your machine, they can put in a
keyboard logger and snaffle your key, but it is an extra protection.

In article <7519f4fb-59cf-4976-9be1-
Simply put: These computers can be full of Pass Words.
For example, when you install an Email Client you probably will be
given an option to use a Pass Word. If you make up the Pass Word
and use it, only you will then have access to that Email Client.
Pass Words are sometimes quite short.

In PGP a Pass Phrase can be thought of as a 'Pass Word" that controls
access to the Secret Key so that only you can use the Secret Key.
For security reasons, PassPhrases are made long and frequently
complicated. They can be made up of alphabet (upper or lower case),
numbers, and characters on your keyboard.
(If too long, they are easy to forget :-( )
Casey