As always, we've covered a lot of ground in this chapter. We began by using GPG to encrypt, sign, and share encrypted files. We then looked at various methods of encrypting drives, partitions, directories, and sharable containers. After that, we looked at how to use OpenSSL to create keys, CSRs, and certificates. But since we don't want to use self-signed certificates all the time, and commercial certificates aren't always necessary, we looked at how to set up a private CA with Dogtag. We wrapped things up by looking at simple ways to harden the TLS configuration on the Apache web server, and we touched on the subject of mutual authentication. 

Along the way, we had plenty of hands-on labs. That's good, because after all, idle hands ...