GnuPG is a complete and free implementation of the OpenPGP standard as defined by RFC4880 (also known as PGP). GnuPG allows you to encrypt and sign your data and communications; it features a versatile key management system, along with access modules for all kinds of public key directories. GnuPG, also known as GPG, is a command line tool with features for easy integration with other applications. A wealth of frontend applications and libraries are available. GnuPG also provides support for S/MIME and Secure Shell (ssh).

Since its introduction in 1997, GnuPG is Free Software (meaning that it respects your freedom). It can be freely used, modified and distributed under the terms of the GNU General Public License .

The current version of GnuPG is 2.2.17. See the download page for other maintained versions.

Gpg4win is a Windows version of GnuPG featuring a context menu tool, a crypto manager, and an Outlook plugin to send and receive standard PGP/MIME mails. The current version of Gpg4win is 3.1.10.

Arguing that you don't care about the right to privacy because you have nothing to hide is no different from saying you don't care about free speech because you have nothing to say. – Edward Snowden

Using encryption helps to protect your privacy and the privacy of the people you communicate with. Encryption makes life difficult for bulk surveillance systems. GnuPG is one of the tools that Snowden used to uncover the secrets of the NSA.

Please visit the Email Self-Defense site to learn how and why you should use GnuPG for your electronic communication.

The latest blog entries:

• Using an OpenPGP card in the UbuntuPhone BQ E4.5
• Financial Results for 2016
• Using the Web Key Service with Enigmail

The latest release news:
(all news)

If you care about local site-channel attacks on ECDSA you may want to update to Libgcrypt version 1.8.5. CVE-CVE-2019-13627 {more}

We are pleased to announce the availability of GnuPG version 2.2.17. This is a maintenance release providing mitigation to the recent DoS attacks on the keyserver network. A few other improvements are also on the list. {more}

We are pleased to announce the availability of GnuPG version 2.2.16. This is a maintenance release fixing a couple of bugs and adding a few minor features. {more}

We are pleased to announce the availability of GnuPG version 2.2.14. This is a maintenance release fixing a few problems and adding some minor features. {more}

We are pleased to announce the availability of GnuPG version 2.2.13. This is a maintenance release fixing a few problems and adding some minor features. {more}

We are pleased to announce the availability of GnuPG version 2.2.12. This is a maintenance release fixing a few problems and adding some minor features. {more}

We are pleased to announce the availability of GnuPG version 2.2.11. This is a maintenance release fixing a few problems. {more}

GPGME is a library that allows to add support for cryptography to a program. {more}.

We are pleased to announce the availability of GnuPG version 2.2.10. This is a maintenance release fixing a few problems. {more}

We are pleased to announce the availability of GnuPG version 2.2.9. This is a maintenance release fixing a few problems. {more}

We are pleased to announce the availability of Libgcrypt version 1.8.3 and 1.7.10. These releases fix a local side-channel attack on ECDSA signature as described in the white pager “Return of the Hidden Number Problem” and got assigned CVE-2018-0495. {more}

Although GnuPG 1.4 is of very limited use today we did a maintenance release to address the critical security bug CVE-2017-7526. See the download section on how to get this version.

This version fixes a critical security bug. Either this version or a vendor provided fix should be installed. There are also a few other changes; see the announcement mail. This is CVE-2018-12020 and our bug #4012.