Emails that are sent from
[email protected] and
[email protected] are always signed with Kraken’s public key. Depending on the software that you use, this can be seen in the form of an attached .asc file or by some form of pop up or warning message asking if you trust the sender or public key that is attached to the email. Generally your email software will open this file itself and will ask you to verify a PGP fingerprint, which is a shortened version of the public key.For the above mentioned email addresses Kraken’s PGP fingerprint is:3EEA 4D83 582E DB05 A704 81B4 A380 42F6 07D6 23DATo verify the .asc file in an email, manually open the file with a text editor and compare it with the
public key found here, by copying the content of the .asc file and searching that content on this webpage.Once you have verified that either the fingerprint or public key matches ours, make sure to indicate in your email software that you trust the sender.
For example, in Protonmail you will first see:
and once you have trusted our public key you will see:
Although you now know that the email was signed by Kraken, unfortunately anyone who intercepted this message before it reached your inbox, can now use Kraken’s public key in the same way you do, to read its content. In order to make sure that the content is for your eyes only, you will want Kraken to send the entire message to you; encrypted with your public key.Since you already shared your public key to us in an earlier step, all automated notifications about your account will be sent to you encrypted. Company announcements and marketing emails won’t be encrypted since these can be easily verified in multiple ways.Verifying that Kraken encrypted an email with Kraken’s private key and your public key.Automated account notification emails will be sent to you fully encrypted, if you have shared your public key through your account settings. Aside from these notification emails,
we also offer the option to communicate with our Support Team in an end-to-end encrypted way. The difference between a signed email and a fully encrypted email lies in the fact that only the holder of your private key will be able to decrypt emails that were encrypted with your public key. Our signed emails on the other hand were encrypted by Kraken using our private key, and your software was able to decrypt it by using our public key, a key which anyone can get from our website.Generally, the holder of your private key will be the software that you have chosen to use for PGP encryption, which is why
it is crucial that you secure this software and your email account as best as you can. You may even want to export your private key and store it safely as a backup. Emails can still be removed from your email account in the event of unauthorized access, PGP encryption will not secure your emails from this scenario, so before setting up PGP keys we strongly recommend that you secure your email account first.