The problem of email is the own protocol, that by itself is insecure, but you can use PGP to encrypt your email, for Android you can use K-9 mail with OpenKeychain.
Step one:
Start yoga and breathing exercising months in advance because it fucking sucks.
Step 2: install GrapheneOS or an equivalent with a hardened malloc with the ability to re-secure the bootloader. Ensure you have full disk encryption.
Pgp: https://www.openkeychain.org/
Tor Browser from Torproject
Protonmail and XMPP via Jabber and Orbot for all
Links from dark.fail
Final step: ditch the phone and get a chrome book, degoogle it by removing wp screw and flashing gallium OS then boot from tails usb. Or buy a $40 used laptop with minimum specs or higher with no hard drives just ensure the BIOS allows USB booting.
OpenKeychain implements the pgp encryption/signing standard on android (based on gpg).
Some mail clients like K-9 Mail can use openkeychain to encrypt and decrypt mails. Also oversec can enrypt and decrypt text of any app with text input via openkeychain.
edit: added links
OpenKeychain is what you want. It does public key cryptography and support multiple recipients so you should not have to share any keys after everyone imports everyone else's keys.
It makes files conforming to the popular OpenPGP standard so you can use the files on almost any existing platform. Not just Android or even smart phones.
I use pass (the one you linked), but don't have my files in a public Git repository. That means I can't use the official Android app. Instead, I use OpenKeychain, load the GPG key onto my phone from my computer, and decrypt the files whenever I need to use a password. I'd guess there is something similar for iOS.
Unfortunately, the Org story on mobile is somewhat lacking. I've looked for reasonable solutions on Android but haven't found anything particularly good, and am thinking about hacking together a simple app to manage my TODO file. Good luck on the iOS front! For now, if you can open a text file the above method for decryption should get you started. After all, Org files look ugly but perfectly readable in any old text editor.
https://www.openkeychain.org The application provides strong, user-based encryption which is compatible with the OpenPGP standard. This allows users to encrypt, decrypt, sign, and verify signatures for text, emails, and files.
OpenKeychain has a surprisingly useful FAQ page that covers this scenario: https://www.openkeychain.org/faq/#what-is-the-best-way-to-transfer-my-own-key-to-openkeychain. Simply replace YOUREMAILADDRESS
with [email protected]
and follow the rest of the instructions.
I use OpenKeychain (OpenPGP implementation for Android). There are also triops (Android port of cli tool, uses Chacha20/Keccak for encryption/hashing, haven't used it much), and EDS, if you want something like TrueCrypt/Veracrypt (encrypted container). It can mount TC/VC volumes, but it needs root for the on-the-fly encryption/decryption, afaict.I haven't used it, so caveat emptor :) It's around 8$ on Play Store, but there is a free(rather limited)Lite version. Triops: https://circulosmeos.wordpress.com/2015/09/15/triops-apk-chacha20keccak-encryption-on-android/ EDS: http://sovworks.com/eds/index.html OpenKeychain: https://www.openkeychain.org
I don't think is possible since the key has to have an identity to create certifies
Also, I've tried to do that and Kleopatra crashes so you should try with other software, maye even on your phone with Openkeychain
You could just encrypt the file after exporting using GPG, something like OpenKeychain · OpenKeychain would allow you to do this and provide flexibility if there is anything else you wish to encrypt (or sign).
I'd suggest OpenKeychain for Android. It's open source and seems to have a reasonably sized userbase.
You can export the private key from OpenKeychain in the standard OpenPGP format (though it's encrypted with OpenPGP file encryption, but this can be removed from within OpenKeychain and most other OpenPGP clients).
Yes you can transfer your key pair to the android applications. Here is the instructions on how to do that from the open keychain website.
https://www.openkeychain.org/faq/#what-is-the-best-way-to-transfer-my-own-key-to-openkeychain
I see websites recommending OpenKeychain, it's FOSS, it's on F-Droid and Android Market. You should be able to create your private key with it. Don't forget to back up your private key and/or revocation certificate.
For PC, the GnuPG website has download links/instructions.
It seems like it is an extra layer of protection from malware but only on phones running Android software. I see no benefit if you have to use it on a device connected to Google servers.
https://www.openkeychain.org/faq/
"Do you trust the software? The Android operating system actually offers a lot more in the way of security between applications than desktop operating systems. No app without root privileges besides OpenKeychain can ever access the keys stored in OpenKeychain’s database. By comparison, any program you run on your computer can just upload your gnupg keyring, if those files belong to the same user. As long as Android as a platform is trustworthy, your keys are safe from malware apps. In conclusion, we believe that secret keys are not notably less safe on your mobile than they would be on your laptop. If your security requirements are high enough that you don’t keep your keys on your laptop, you probably shouldn’t put them on your mobile either."
Yes, thats would be great and actually I am even working on GNUK support for Openkeychain(android app for PGP) right now. (thats why I am intersted in pgp support without additional stuff on host)