The security of your data is the most important thing. The focus of Gpg4win is on secure file and email encryption as well as good usability.
OpenPGP & S/MIME
Gpg4win supports both: OpenPGP and S/MIME (X.509)
The configuration of X.509 root certificates is made simple by Gpg4win. Now, also inexperienced users can start using S/MIME out-of-the-box. Security aware system administrators should read the step by step instructions and define a systems-wide list of trusted X.509 root certificates.
High algorithmic strength of GnuPG
Gpg4win is the official GnuPG distribution for Windows and provides the high cryptographic standards of the GNU Privacy Guard. GnuPG follows the recommendations regarding algorithms and key length of the German Federal Office for Information Security (BSI).
To create OpenPGP and X.509 certificates Gpg4win uses a key length of 2048bit by default. The default algorithm for signing and encrypting is RSA.
Gpg4win supports using SmartCards for OpenPGP and S/MIME. You can find technical details on the GnuPG page.
Files and Folders
Signing and encrypting
Sign single files or complete folders directly from the Windows Explorer with GpgEX or Kleopatra. You can select multiple files and folders to sign and encrypt them recursively into a gpgtar archive.
Create and verify checksums of files - also directly from the Windows Explorer or Kleopatra. Gpg4win can create a unique checksum for each selected file, with which the integrity of these files can be verified any time later. Both creation and verification of these cryptographic checksums (hashes) are carried out in an analogous manner in the GUI. Gpg4win supports the hash algorithms SHA-1, SHA-256 and MD5.
Signing and encrypting
The provided Outlook plugin GpgOL allows to sign and encrypt emails directly in Microsoft Outlook. Attachments can be encrypted as well, in one go with the email body. Verifying signatures and decrypting messages is done directly in Outlook too.
User-friendly Certificate Selection
The selection of the right email certificate is a function of Kleopatra - based on the corresponding email address. Kleopatra shows the automated pre-selection of certificates in the following dialog.
For "power users" Gpg4win provides the option to show this confirmation dialog only in case of conflict. Thereby you do not need to confirm certificates which do accord uniquely. You work more quickly - without reducing security.
Installation and Compendium
The Gpg4win Installer enables you to install Gpg4win in a very simple and secure manner. A step-by-step installation guide is provided as part of the Gpg4win Compendium.
The Gpg4win Compendium provides illustrative documentation for getting started in the field of applied cryptography and using Gpg4win. It is available in German and English.
Certificate Management with Kleopatra
Manage certificates securely and comfortably
Kleopatra is the preferred certificate manager in Gpg4win. Kleopatra allows for the management of all certificates (OpenPGP and S/MIME) in one tool.
Kleopatra provides a simple import and export of certificates from and to (OpenPGP and X.509) certificate servers (also called key servers).
Certify OpenPGP Certificates
Use Kleopatra to certify (sign) a public OpenPGP certificate of a trusted person. Thus, these certificates will be marked as "trusted certificates".
Other things to know
Gpg4win is Free Software and consists of several independently developed packages which have different Free Software licenses. The majority (including Gpg4win) are licensed under GNU General Public License (GNU GPL). The usage of Gpg4win is for free.
Gpg4win supports Windows XP and higher (including Win 10). All screenshots are made with Windows 7. Furthermore all desktop Windows systems since XP are supported.
GpgOL requires Microsoft Outlook 2003, 2007, 2010, 2013 or 2016 (for all: 32bit only)
Details are listed in the section System Requirements of Gpg4win's "About"-webpage.
All dialogs of Gpg4win are available both English and German. The Gpg4win Installer provides some additional languages.