English | Deutsch
Home » About Gpg4win


The security of your data is the most important thing. The focus of Gpg4win is on secure file and email encryption as well as good usability.



Gpg4win supports both: OpenPGP and S/MIME (X.509)

The configuration of X.509 root certificates is made simple by Gpg4win. Now, also inexperienced users can start using S/MIME out-of-the-box. Security aware system administrators should read the step by step instructions and define a systems-wide list of trusted X.509 root certificates.

High algorithmic strength of GnuPG

Gpg4win is the official GnuPG distribution for Windows and provides the high cryptographic standards of the GNU Privacy Guard. GnuPG follows the recommendations regarding algorithms and key length of the German Federal Office for Information Security (BSI).

To create OpenPGP and X.509 certificates Gpg4win uses a key length of 2048bit by default. The default algorithm for signing and encrypting is RSA.


Gpg4win supports using SmartCards for OpenPGP and S/MIME. You can find technical details on the GnuPG page.

Files and Folders

Signing and encrypting

Sign single files or complete folders directly from the Windows Explorer with GpgEX or Kleopatra. You can select multiple files and folders to sign and encrypt them recursively into a gpgtar archive.


Create and verify checksums of files - also directly from the Windows Explorer or Kleopatra. Gpg4win can create a unique checksum for each selected file, with which the integrity of these files can be verified any time later. Both creation and verification of these cryptographic checksums (hashes) are carried out in an analogous manner in the GUI. Gpg4win supports the hash algorithms SHA-1, SHA-256 and MD5.


Signing and encrypting

The provided Outlook plugin GpgOL allows to sign and encrypt emails directly in Microsoft Outlook. Attachments can be encrypted as well, in one go with the email body. Verifying signatures and decrypting messages is done directly in Outlook too.

User-friendly Certificate Selection

The selection of the right email certificate is a function of Kleopatra - based on the corresponding email address. Kleopatra shows the automated pre-selection of certificates in the following dialog.


For "power users" Gpg4win provides the option to show this confirmation dialog only in case of conflict. Thereby you do not need to confirm certificates which do accord uniquely. You work more quickly - without reducing security.

Installation and Compendium


The Gpg4win Installer enables you to install Gpg4win in a very simple and secure manner. A step-by-step installation guide is provided as part of the Gpg4win Compendium.


Gpg4win Compendium

The Gpg4win Compendium provides illustrative documentation for getting started in the field of applied cryptography and using Gpg4win. It is available in German and English.

Certificate Management with Kleopatra

Manage certificates securely and comfortably

Kleopatra is the preferred certificate manager in Gpg4win. Kleopatra allows for the management of all certificates (OpenPGP and S/MIME) in one tool.

Certificate Server

Kleopatra provides a simple import and export of certificates from and to (OpenPGP and X.509) certificate servers (also called key servers).

Certify OpenPGP Certificates

Use Kleopatra to certify (sign) a public OpenPGP certificate of a trusted person. Thus, these certificates will be marked as "trusted certificates".

Other things to know

Free Software

Gpg4win is Free Software and consists of several independently developed packages which have different Free Software licenses. The majority (including Gpg4win) are licensed under GNU General Public License (GNU GPL). The usage of Gpg4win is for free.

System Requirements

Details are listed in the section System Requirements.


All dialogs of Gpg4win are available both English and German. The Gpg4win Installer provides some additional languages.