DIRECTIVE: Communications security standards.

1. Key Generation: Use 4096-bit RSA keys. Elliptic Curve keys are currently supported but RSA is preferred for compatibility across the torzon onion network.

2. 2-Factor Authentication (2FA): Enabling PGP 2FA is the only defense against phishing. If enabled, the torzon login link will present an encrypted challenge that only you can decrypt.

3. Client-Side Only: NEVER decrypt messages on the server side or use "web-based" PGP tools. Decryption must happen offline on your local machine using tools like Kleopatra or GPG4Win.

4. Address Encryption: When sending shipping info to a vendor, encrypt the message using the Vendor's public key. Do not rely on the market's auto-encrypt feature as a primary layer.