1-you cannot decrypt using someone’s public key
2-what’s the point of encryption that only works between the hops of mail servers, and not between the users computers which are often the biggest and least protected hops?

Infrastructure is promoted by (at a start) awareness, so make everyone aware.

Otherwise, a nice idea which you should ask the developers of GPG plugins to implement. ;)

Fortunately, for the most part, folks too lazy to be willing to read a page of instructions generally don’t have anything worth saying in email anyways, so they’re probably not missing out on anything.

If you encrypt something with your own key and publish the public key, then anybody can retrieve the public key and decrypt it (zero security).

If you guest want secure encrypted message from you, they need to have their own private/public key. If you encrypt the message with their public key, they are the only person to be able to decrypt it, because they are the only one that have the private key.

For those that live still in the stone ages of desktop apps, use Thunderbird (http://www.mozilla.com/thunderbird/) and Enigmail (http://enigmail.mozdev.org/)

And if you want to eliminate spam, go and sign (not necessarily encrypt) every message you send. Then spam filters (http://search.cpan.org/~brondsem/Mail-SpamAssassin-Plugin-OpenPGP-1.0.4/lib/Mail/SpamAssassin/Plugin/OpenPGP.pm) can be sure it is your message and filter (pass) accordingly.

On Mac, there are just a few apps to install (the one installer and one DMG) to get full integration into Mail.app
Thunderbird on Mac/Linux is also not too bad.

The problem is that gpg on windows is that few nice UIs have been written.

At work, we do encrypt quite a few e-mails but I would guess it is less than 1%. We do use keys for file transmission via SSH, and sometimes we even encrypt the file too.

Another problem is we do encryption at the wrong level for just using as a method of secure (if not necessarily private) point to point communication (which is why it cannot replace fax machines). It should be possible to form an email address with a flag to encrypt an email during transit – for instance instead of example@example.com you would send it to example@$example.com. This would tell your SMTP server that you wish this message to be encrypted. Your SMTP server would check a cache of public keys to see if it has the one for example.com. If not it would then contact SMTP server (or perhaps a key server) for example.com who would send your server its public key (perhaps via SSL as a verification method). Your server then encrypts the message and sends it. When example.com receives the message it decrypts it and the puts it in the mailbox for the recipient. This would provide method of secure communication across the Internet that is transparent and easy to use by the average user.

We have the technology, just not the infrastructure.

Love the idea, but until someone makes it easy on both ends it’ll never take off.