AgePony PGPony ↗ download
// guide / share-an-encrypted-file

How to securely share an encrypted file.

The point of encrypting to a recipient is that the channel no longer matters. Encrypt to their key, then send the .age over email, chat, or a shared drive — only they can open it.

~2 minutes iOS / Android Recipient's public key
// at a glance
  1. Get the recipient's public key
  2. Encrypt the file to them in AgePony
  3. Send the .age over any channel
  4. They decrypt with their identity
  5. Verify a signature if integrity matters
Prerequisites
  • AgePony installed
  • The recipient's age or SSH public key
  • The file to share
// step 01

Get the recipient's public key.

Obtain their age1… recipient or SSH public key — or just their GitHub username if they publish keys there.

// step 02

Encrypt to them.

In AgePony, add their key as a recipient and encrypt the file. Choose armored output if you will paste it into a message, binary if you will attach a file.

// step 03

Send it over any channel.

Because the file is encrypted to the recipient, the transport does not need to be secure. Email, chat, cloud storage — all fine. Anyone intercepting it sees only ciphertext.

// step 04

They decrypt with their identity.

The recipient opens the .age in AgePony or with the age CLI using their private identity.

// step 05

Optionally sign for integrity.

If they need to be sure the file is from you and unmodified, also sign it and send the .sig. They verify with your public key.

Verify it worked.

  • The recipient confirms they can decrypt.
  • Interceptors see only the .age ciphertext.
  • A signature, if added, verifies against your public key.

Common questions.

Is it safe to send over email?

Yes — the file is encrypted end to end before it leaves your device. Email only carries ciphertext.

Should I also sign it?

Sign when the recipient needs to confirm authorship and integrity, such as for releases or important documents.

What if I send to the wrong person?

They cannot open it unless you encrypted to their key. Encrypt only to the intended recipient's key.

Can I send to a group?

Yes — add every recipient's key so each can decrypt independently.

Next steps.

Core

Encrypt to a GitHub username
Signing

Sign a file with your SSH key
Glossary

Recipient
For

For journalists

Get AgePony

Free file encryption for iOS and Android. No accounts, no tracking, no servers.

Download on the App Store
Get it on Google Play