The GNU Privacy Guard
GnuPG is a complete and free implementation of the OpenPGP standard as defined by RFC4880 (also known as PGP). GnuPG allows to encrypt and sign your data and communication, features a versatile key management system as well as access modules for all kinds of public key directories. GnuPG, also known as GPG, is a command line tool with features for easy integration with other applications. A wealth of frontend applications and libraries are available. GnuPG also provides support for S/MIME and Secure Shell (ssh).
The current version of GnuPG is 2.1.21. See the download page for other maintained versions.
Gpg4win provides a Windows version of the older GnuPG 2.0 branch. It is nicely integrated into an installer and features several frontends as well as English and German manuals.
GnuPG needs your support to help protect online privacy.
Please consider donating to ensure that this critical piece of software continues to work for everyone.
5 132 €
of 15 000 € needed.
34 157 € in one-time donations.
Reconquer your privacy
Arguing that you don't care about the right to privacy because you have nothing to hide is no different from saying you don't care about free speech because you have nothing to say. – Edward Snowden
Using encryption helps to protect your privacy and the privacy of the people you communicate with. Encryption makes life difficult for bulk surveillance systems. GnuPG is one of the tools that Snowden used to uncover the secrets of the NSA.
The latest blog entries:
- Independent Encryption Software, GnuPG, Needs Financial Support
- A New Bugtracker for GnuPG
- GnuPG this Past Fall
The latest release news:
GnuPG 1.4.22 released (2017-07-19)
Although GnuPG 1.4 is of limited use today we did a maintenance release to address the recently published local side channel attack CVE-2017-7526. See the download section on how to get this version.
Libgcrypt 1.8.0 released (2017-07-18)
We are pleased to announce the availability of Libgcrypt version 1.8.0. This is a new stable version with full API and ABI compatibility to the 1.7 series. Its main features are support for the hash algorithm Blake-2, the addition of XTS mode, an improved random number generator, and performance improvements for the ARM architecture. See the announcement mail for details.
Scute 1.5.0 released (2017-07-14)
Scute is a PKCS#11 module built around the GnuPG Agent and the GnuPG Smart Card Daemon. It allows you to use your OpenPGP smart card for TLS client authentication and S/MIME mail and document signing. Read the full announcement mail for details.
Libgcrypt 1.7.8 released (2017-06-29) important
GnuPG 2.1.21 released (2017-05-15) important
A new version of GnuPG has been released. This release fixes a pubring.gpg corruption bug introduced with 2.1.20. Read the full announcement mail for details.
GnuPG 2.1.20 released (2017-04-03)
New installer for GnuPG 2.1.19 (2017-03-28)
GnuPG Made Easy 1.9.0 released (2017-03-28)
GnuPG 2.1.19 released (2017-03-01)
GnuPG 2.1.18 released (2017-01-23)
Libgcrypt 1.7.6 released (2017-01-18)
We are pleased to announce the availability of Libgcrypt version 1.7.6. This is a maintenance release for the stable version of Libgcrypt with a few bug fixes.
GnuPG 2.1.17 released (2016-12-20)
Libgcrypt 1.7.5 released (2016-12-15)
Pinentry 1.0.0 released (2016-11-22)
After 14 years is was time to bump up the version of Pinentry to 1.0. This new release fixes a couple of minor bugs and introduces features to better diagnose problems. See the download section on how to get Pinentry.
GPA 0.9.10 released (2016-11-19)
GnuPG 2.1.16 released (2016-11-18)
It has been 3 months since the last GnuPG modern release and thus it was time for a new one: Version 2.1.16 is now available. Read the full announcement mail for details.
GnuPG Made Easy (GPGME) 1.7.0 released (2016-09-21)
GnuPG 2.1.15 released (2016-08-18)
A new version of the modern branch of GnuPG has been released. Read the full announcement mail for details.
Security fixes for Libgcrypt and GnuPG 1.4 (2016-08-17) important
A bug in the random number generator of Libgcrypt and in GnuPG 1.4 has been found. Updating the software is highly suggested. Please read this mail for details. Note that the CVE id in that mail is not correct, the correct one is CVE-2016-6313.
A big Thanks to all supporters
Due to this ProPublica article we received more than 120,000 € of individual donations on a single day. There was even more: The Core Infrastructure Initiative granted 60,000 $ for 2015. Our payment service Stripe and Facebook will each give 50,000 $ to the project. And finally the Wau Holland Stiftung is collecting tax deductible funds for GnuPG (19000 € plus 57 BTC).
As the main author of GnuPG, I like to thank everyone for supporting the project, be it small or large individual donations, helping users, providing corporate sponsorship, working on the software, and for all the encouraging words.
GnuPG does not stand alone: there are many other projects, often unknown to most people, which are essential to keep the free Internet running. Many of them are run by volunteers who spend a lot of unpaid time on them. They need our support as well.
— Werner, 2015-02-06
(see also this blog entry)