{"_id":"54fea91a26230917004adcad","version":{"_id":"54fda38e21538c21006c49a6","__v":3,"forked_from":"54eb4535615ffc19003059f0","project":"545e249c7ca5470800b3a1b2","createdAt":"2015-03-09T13:43:42.927Z","releaseDate":"2015-03-09T13:43:42.927Z","categories":["54fda38f21538c21006c49a7","54fda38f21538c21006c49a8","54fda38f21538c21006c49a9","54fda38f21538c21006c49aa","54fda38f21538c21006c49ab","54fda3d347f93619001d2ae2","54fea8975c4ab10d00ef4279"],"is_deprecated":false,"is_hidden":false,"is_beta":true,"is_stable":true,"codename":"","version_clean":"0.5.0","version":"0.5.0"},"user":"54bf8cd9dcfc4d0d00a1a19e","category":{"_id":"54fea8975c4ab10d00ef4279","version":"54fda38e21538c21006c49a6","__v":2,"pages":["54fea91a26230917004adcad","54ff12b95c4ab10d00ef42e5"],"project":"545e249c7ca5470800b3a1b2","sync":{"url":"","isSync":false},"reference":false,"createdAt":"2015-03-10T08:17:27.521Z","from_sync":false,"order":4,"slug":"encryption","title":"Encryption"},"githubsync":"","__v":15,"project":"545e249c7ca5470800b3a1b2","metadata":{"title":"","description":"","image":[]},"updates":[],"next":{"pages":[],"description":""},"createdAt":"2015-03-10T08:19:38.034Z","link_external":false,"link_url":"","sync_unique":"","hidden":false,"api":{"results":{"codes":[]},"auth":"required","params":[],"url":""},"isReference":false,"order":0,"body":"ElectricSheep.IO supports public-key encryption based on _GNU Privacy Guard_ - [GPG](https://www.gnupg.org/).\n\nWhen using ES.IO, there are two different use cases for encryption:\n\n\n* you want to encrypt secrets added to your _Sheepfile_ - such as passwords or access keys - using **ES.IO's public key** so that you may share your _Sheepfile_ safely, be it on a public repository\n* you want ES.IO to encrypt the backup files it creates using **your** public key, so that they may be stored securely in the Cloud\n\nEach of these use cases rely on two different keypairs:\n\n* to encrypt your credentials, generate a specific keypair for ES.IO. You should **use the public key to encrypt** your passwords and secret keys, and make the **private key available to the program** so that it may decrypt them.  See [Encrypt your credentials](doc:encrypt-your-credentials) for more.\n* to make ES.IO encrypt backup files, you should do the opposite. You should make **your public key available to the program** for encryption and decrypt the backup files using **your private key**. See [Encrypt your backup files](doc:encrypt-your-backup-files) for more.\n[block:callout]\n{\n  \"type\": \"info\",\n  \"body\": \"For each job, you may choose to only encrypt secrets, backup files or nothing. However **we strongly advice you to encrypt both your credentials and backup files**.\",\n  \"title\": \"Encryption is not mandatory\"\n}\n[/block]","excerpt":"A short intro to encryption of credentials or backup files","slug":"introduction","type":"basic","title":"Introduction"}

Introduction

A short intro to encryption of credentials or backup files

ElectricSheep.IO supports public-key encryption based on _GNU Privacy Guard_ - [GPG](https://www.gnupg.org/). When using ES.IO, there are two different use cases for encryption: * you want to encrypt secrets added to your _Sheepfile_ - such as passwords or access keys - using **ES.IO's public key** so that you may share your _Sheepfile_ safely, be it on a public repository * you want ES.IO to encrypt the backup files it creates using **your** public key, so that they may be stored securely in the Cloud Each of these use cases rely on two different keypairs: * to encrypt your credentials, generate a specific keypair for ES.IO. You should **use the public key to encrypt** your passwords and secret keys, and make the **private key available to the program** so that it may decrypt them. See [Encrypt your credentials](doc:encrypt-your-credentials) for more. * to make ES.IO encrypt backup files, you should do the opposite. You should make **your public key available to the program** for encryption and decrypt the backup files using **your private key**. See [Encrypt your backup files](doc:encrypt-your-backup-files) for more. [block:callout] { "type": "info", "body": "For each job, you may choose to only encrypt secrets, backup files or nothing. However **we strongly advice you to encrypt both your credentials and backup files**.", "title": "Encryption is not mandatory" } [/block]