ProtonBlog

Introducing GopenPGP, an open source encryption library for native applications

Condividi questa pagina

In 2016, Proton Mail became the maintainer(new window) of OpenPGP.js, the world’s most widely used Javascript email encryption library. Since then we have updated the library with new features(new window), such as streaming encryption; assisted developers(new window) to adopt the library in their own applications; and submitted the library to independent security audits(new window).

Today, we are happy to announce another open source project that will be maintained by Proton Mail: GopenPGP(new window). This project consists of a high-level OpenPGP library, as well as a fork of the golang crypto library. We started this project to make it easier for mobile and desktop developers to use OpenPGP encryption in their apps.

We’re excited about GopenPGP for two main reasons. First, we believe more people should have access to encrypted communications, and an easy-to-use encryption library for mobile developers is an important step forward in that mission. Second, the release of GopenPGP paves the way to open sourcing the Proton Mail mobile and desktop apps, which has been a high priority for our team and for our users (our web app has already been open sourced since 2015).

What is GopenPGP?

GopenPGP (a portmanteau of Go and OpenPGP) is a high-level OpenPGP library(new window) that we have developed for use in our own Android and iOS(new window), Bridge(new window), and Import-Export(new window) apps, as well as a fork of the golang crypto library(new window), which the high-level library is built on.

The GopenPGP library makes it easy to perform simple operations, such as encrypt, decrypt, sign and verify messages, manage keys, etc., without having to deal with complicated cryptographic concepts. This high-level interface is compatible with go-mobile, a popular tool for building mobile apps written in Go.

Meanwhile, our fork contains a number of new features, bug fixes, and security improvements. It supports elliptic curve cryptography, providing more efficient and secure encryption on mobile devices. We’re working with the maintainers of the golang OpenPGP library to contribute these changes back.

Both of these libraries have been audited by SEC Consult(new window) and will always be available from our new web portal at gopenpgp.org and on Github(new window). GopenPGP is a free and open source software released under the MIT license.

GopenPGP roadmap

Over the last few weeks, we have been in discussions with the maintainers of the golang OpenPGP library about including our improvements there. Either way, we will continue to maintain our fork and the GopenPGP wrapper library on gopenpgp.org.

We invite the developer community to join us and help us to make GopenPGP as successful as OpenPGP.js has been. Already, millions of end users rely on GopenPGP for secure mobile communications via the Proton Mail apps. Our mission is to help more developers start encrypting and spread access to online privacy.

We invite your feedback, contributions, and questions at https://github.com/ProtonMail/gopenpgp(new window) and https://github.com/ProtonMail/crypto(new window).

Best Regards,
The Proton Mail Team

You can get a free secure email account from Proton Mail here(new window).

We also provide a free VPN service(new window) to protect your privacy.

Proton Mail and Proton VPN are funded by community contributions. If you would like to support our development efforts, you can upgrade to a paid plan. Thank you for your support.

Proteggi la tua privacy con Proton
Crea un account gratuito

Condividi questa pagina

Ben Wolford

Ben Wolford is a writer and editor whose work has appeared in major newspapers and magazines around the world. Ben joined Proton in 2018 to help to explain technical concepts in privacy and make Proton products easy to use.

Articoli correlati

en
At Proton, we’re always working on new and innovative ways to protect the privacy and data of the Proton community. Sometimes that means developing entirely new services, like our Proton Sentinel program, which combines AI and human security analysts
How to unsend an email in Gmail, Outlook, Proton Mail, and Apple Mail
en
“Undo Send” gives you a chance to stop an erroneous message you’ve just sent. We’ve all done it. You hit Send on an email only to spot you’ve misspelled someone’s name, forgotten an attachment, or accidentally sent a cringing joke to half your conta
en
Google has already taken privacy washing to the extreme by trying to brand itself as “privacy focused”, even though its business model is based on surveillance.  Lately, the company’s marketing strategy has turned toward outright Orwellian doublespe
en
Last week, the UK government made a statement in the House of Lords acknowledging that portions of the controversial Online Safety Bill might not even be technically enforceable without breaking end-to-end encryption. This rightly received a lot of a
What is email spoofing?
en
Email spoofing is a technique attackers use to make a message appear to be from a legitimate sender — a common trick in phishing and spam emails. Learn how spoofing works, how to identify spoofed messages, and how to protect yourself from spoofing a
en
Google Chrome is the world’s most popular web browser by far, with over 3 billion users. Its built-in password manager, Google Password Manager, is its default software to create and store passwords for websites and services. Although convenient for