Difference between PGP and GPG












122















What are the main differences between PGP (Pretty Good Privacy) and GPG (GNU Privacy Guard) in relationship with security in Ubuntu and Launchpad?










share|improve this question





























    122















    What are the main differences between PGP (Pretty Good Privacy) and GPG (GNU Privacy Guard) in relationship with security in Ubuntu and Launchpad?










    share|improve this question



























      122












      122








      122


      30






      What are the main differences between PGP (Pretty Good Privacy) and GPG (GNU Privacy Guard) in relationship with security in Ubuntu and Launchpad?










      share|improve this question
















      What are the main differences between PGP (Pretty Good Privacy) and GPG (GNU Privacy Guard) in relationship with security in Ubuntu and Launchpad?







      security gnupg pgp






      share|improve this question















      share|improve this question













      share|improve this question




      share|improve this question








      edited Dec 17 '12 at 13:54









      Andrew Ferrier

      3202416




      3202416










      asked Sep 12 '12 at 2:03









      Luis AlvaradoLuis Alvarado

      147k139487656




      147k139487656






















          3 Answers
          3






          active

          oldest

          votes


















          136














          PGP can refer to two things:




          1. The Pretty Good Privacy software originally written by Phil Zimmermann, and now owned by Symantec.

          2. The formats for keys, encrypted messages and message signatures defined by that software. These have now been formalised as the OpenPGP standard.


          The GNU Privacy Guard (GPG) software is an independent implementation of the OpenPGP standards, so you can use it to exchange encrypted messages with people using other OpenPGP implementations (e.g. Symantec's PGP).



          Due to its popularity on Linux systems, it is also fairly common for people to incorrectly use the term "GPG" to refer to the whole OpenPGP cryptography system (e.g.
          "GPG keys" or "GPG signatures"). It is usually pretty clear what they mean from the context though.






          share|improve this answer


























          • I was confused by github using the term GPG key ... so this is wrong technically? You reassure me that my understanding was correct, thanks :)

            – Ilja
            Feb 15 '18 at 10:48











          • This answer could be improved by being more clear about the term "GPG Keys" being the incorrect or correct usage.

            – Elijah Lynn
            16 mins ago





















          25














          “PGP” stands for “Pretty Good Privacy.” It was developed by Phil Zimmermann. At first it was written as copyrighted freeware under the Gnu Public License. Later, PGP was upgraded and made into a propriety program. The rights for this program are traded around. The reason for this upgrade was legal defense costs and royalty issues related to the export laws of the USA. Now the PGP program is owned by PGP Corporation.



          Only the command line version is not owned by PGP Corporation which is also not for sale. PGP uses the RSA algorithm and the IDEA encryption algorithm. The PGP is considered to have Windows interface which is more polished



          “GPG” stands for “Gnu Privacy Guard.” GPG is a re-write or upgrade of PGP. It does not use the IDEA encryption algorithm. This is to make it completely free. It uses the NIST AES, Advanced Encryption Standard. All the algorithm data is stored and documented publicly by OpenPGP Alliance. The main reason for this change is that AES costs less than IDEA and is considered more secure. Moreover, it is royalty free because it is not patented. GPG is more compatible than the original PGP with OpenPGP. GPG is also based on a command line. Windows frontends are also available for GPG other than the command line.






          share|improve this answer
























          • Are you sure the original version was GPL? The Wikipedia article just says that "No license was required for its non-commercial use".

            – Keith Thompson
            Sep 12 '12 at 10:05











          • I'm pretty sure it wasn't ever GPL: if it was, there wouldn't have been a need for GPG to be a clean room implementation.

            – James Henstridge
            Oct 3 '12 at 10:33






          • 2





            "GPG is a re-write or upgrade of PGP." That's false. GPG is an implementation of OpenPGP.

            – vcardillo
            Sep 8 '16 at 18:35



















          9














          Gnu Privacy Guard and Pretty Good Privacy -- also referred to as GPG and PGP, respectively -- are data encryption and decryption solutions used for transferring and storing information securely. GPG and PGP are nearly identical, with the major difference between them being how they are licensed to the public.



          Read more: The Difference Between GPG and PGP | eHow.com http://www.ehow.com/info_12225332_difference-between-gpg-pgp.html#ixzz26DXDNpJy






          share|improve this answer



















          • 1





            Link is broken.

            – darryn.ten
            Nov 2 '17 at 11:02











          • The downside of links. Thankfully: archive.org

            – mateuscb
            Dec 23 '18 at 19:30












          Your Answer








          StackExchange.ready(function() {
          var channelOptions = {
          tags: "".split(" "),
          id: "89"
          };
          initTagRenderer("".split(" "), "".split(" "), channelOptions);

          StackExchange.using("externalEditor", function() {
          // Have to fire editor after snippets, if snippets enabled
          if (StackExchange.settings.snippets.snippetsEnabled) {
          StackExchange.using("snippets", function() {
          createEditor();
          });
          }
          else {
          createEditor();
          }
          });

          function createEditor() {
          StackExchange.prepareEditor({
          heartbeatType: 'answer',
          autoActivateHeartbeat: false,
          convertImagesToLinks: true,
          noModals: true,
          showLowRepImageUploadWarning: true,
          reputationToPostImages: 10,
          bindNavPrevention: true,
          postfix: "",
          imageUploader: {
          brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
          contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
          allowUrls: true
          },
          onDemand: true,
          discardSelector: ".discard-answer"
          ,immediatelyShowMarkdownHelp:true
          });


          }
          });














          draft saved

          draft discarded


















          StackExchange.ready(
          function () {
          StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2faskubuntu.com%2fquestions%2f186805%2fdifference-between-pgp-and-gpg%23new-answer', 'question_page');
          }
          );

          Post as a guest















          Required, but never shown

























          3 Answers
          3






          active

          oldest

          votes








          3 Answers
          3






          active

          oldest

          votes









          active

          oldest

          votes






          active

          oldest

          votes









          136














          PGP can refer to two things:




          1. The Pretty Good Privacy software originally written by Phil Zimmermann, and now owned by Symantec.

          2. The formats for keys, encrypted messages and message signatures defined by that software. These have now been formalised as the OpenPGP standard.


          The GNU Privacy Guard (GPG) software is an independent implementation of the OpenPGP standards, so you can use it to exchange encrypted messages with people using other OpenPGP implementations (e.g. Symantec's PGP).



          Due to its popularity on Linux systems, it is also fairly common for people to incorrectly use the term "GPG" to refer to the whole OpenPGP cryptography system (e.g.
          "GPG keys" or "GPG signatures"). It is usually pretty clear what they mean from the context though.






          share|improve this answer


























          • I was confused by github using the term GPG key ... so this is wrong technically? You reassure me that my understanding was correct, thanks :)

            – Ilja
            Feb 15 '18 at 10:48











          • This answer could be improved by being more clear about the term "GPG Keys" being the incorrect or correct usage.

            – Elijah Lynn
            16 mins ago


















          136














          PGP can refer to two things:




          1. The Pretty Good Privacy software originally written by Phil Zimmermann, and now owned by Symantec.

          2. The formats for keys, encrypted messages and message signatures defined by that software. These have now been formalised as the OpenPGP standard.


          The GNU Privacy Guard (GPG) software is an independent implementation of the OpenPGP standards, so you can use it to exchange encrypted messages with people using other OpenPGP implementations (e.g. Symantec's PGP).



          Due to its popularity on Linux systems, it is also fairly common for people to incorrectly use the term "GPG" to refer to the whole OpenPGP cryptography system (e.g.
          "GPG keys" or "GPG signatures"). It is usually pretty clear what they mean from the context though.






          share|improve this answer


























          • I was confused by github using the term GPG key ... so this is wrong technically? You reassure me that my understanding was correct, thanks :)

            – Ilja
            Feb 15 '18 at 10:48











          • This answer could be improved by being more clear about the term "GPG Keys" being the incorrect or correct usage.

            – Elijah Lynn
            16 mins ago
















          136












          136








          136







          PGP can refer to two things:




          1. The Pretty Good Privacy software originally written by Phil Zimmermann, and now owned by Symantec.

          2. The formats for keys, encrypted messages and message signatures defined by that software. These have now been formalised as the OpenPGP standard.


          The GNU Privacy Guard (GPG) software is an independent implementation of the OpenPGP standards, so you can use it to exchange encrypted messages with people using other OpenPGP implementations (e.g. Symantec's PGP).



          Due to its popularity on Linux systems, it is also fairly common for people to incorrectly use the term "GPG" to refer to the whole OpenPGP cryptography system (e.g.
          "GPG keys" or "GPG signatures"). It is usually pretty clear what they mean from the context though.






          share|improve this answer















          PGP can refer to two things:




          1. The Pretty Good Privacy software originally written by Phil Zimmermann, and now owned by Symantec.

          2. The formats for keys, encrypted messages and message signatures defined by that software. These have now been formalised as the OpenPGP standard.


          The GNU Privacy Guard (GPG) software is an independent implementation of the OpenPGP standards, so you can use it to exchange encrypted messages with people using other OpenPGP implementations (e.g. Symantec's PGP).



          Due to its popularity on Linux systems, it is also fairly common for people to incorrectly use the term "GPG" to refer to the whole OpenPGP cryptography system (e.g.
          "GPG keys" or "GPG signatures"). It is usually pretty clear what they mean from the context though.







          share|improve this answer














          share|improve this answer



          share|improve this answer








          edited 18 mins ago









          Elijah Lynn

          2,66721831




          2,66721831










          answered Sep 12 '12 at 2:23









          James HenstridgeJames Henstridge

          31.8k79488




          31.8k79488













          • I was confused by github using the term GPG key ... so this is wrong technically? You reassure me that my understanding was correct, thanks :)

            – Ilja
            Feb 15 '18 at 10:48











          • This answer could be improved by being more clear about the term "GPG Keys" being the incorrect or correct usage.

            – Elijah Lynn
            16 mins ago





















          • I was confused by github using the term GPG key ... so this is wrong technically? You reassure me that my understanding was correct, thanks :)

            – Ilja
            Feb 15 '18 at 10:48











          • This answer could be improved by being more clear about the term "GPG Keys" being the incorrect or correct usage.

            – Elijah Lynn
            16 mins ago



















          I was confused by github using the term GPG key ... so this is wrong technically? You reassure me that my understanding was correct, thanks :)

          – Ilja
          Feb 15 '18 at 10:48





          I was confused by github using the term GPG key ... so this is wrong technically? You reassure me that my understanding was correct, thanks :)

          – Ilja
          Feb 15 '18 at 10:48













          This answer could be improved by being more clear about the term "GPG Keys" being the incorrect or correct usage.

          – Elijah Lynn
          16 mins ago







          This answer could be improved by being more clear about the term "GPG Keys" being the incorrect or correct usage.

          – Elijah Lynn
          16 mins ago















          25














          “PGP” stands for “Pretty Good Privacy.” It was developed by Phil Zimmermann. At first it was written as copyrighted freeware under the Gnu Public License. Later, PGP was upgraded and made into a propriety program. The rights for this program are traded around. The reason for this upgrade was legal defense costs and royalty issues related to the export laws of the USA. Now the PGP program is owned by PGP Corporation.



          Only the command line version is not owned by PGP Corporation which is also not for sale. PGP uses the RSA algorithm and the IDEA encryption algorithm. The PGP is considered to have Windows interface which is more polished



          “GPG” stands for “Gnu Privacy Guard.” GPG is a re-write or upgrade of PGP. It does not use the IDEA encryption algorithm. This is to make it completely free. It uses the NIST AES, Advanced Encryption Standard. All the algorithm data is stored and documented publicly by OpenPGP Alliance. The main reason for this change is that AES costs less than IDEA and is considered more secure. Moreover, it is royalty free because it is not patented. GPG is more compatible than the original PGP with OpenPGP. GPG is also based on a command line. Windows frontends are also available for GPG other than the command line.






          share|improve this answer
























          • Are you sure the original version was GPL? The Wikipedia article just says that "No license was required for its non-commercial use".

            – Keith Thompson
            Sep 12 '12 at 10:05











          • I'm pretty sure it wasn't ever GPL: if it was, there wouldn't have been a need for GPG to be a clean room implementation.

            – James Henstridge
            Oct 3 '12 at 10:33






          • 2





            "GPG is a re-write or upgrade of PGP." That's false. GPG is an implementation of OpenPGP.

            – vcardillo
            Sep 8 '16 at 18:35
















          25














          “PGP” stands for “Pretty Good Privacy.” It was developed by Phil Zimmermann. At first it was written as copyrighted freeware under the Gnu Public License. Later, PGP was upgraded and made into a propriety program. The rights for this program are traded around. The reason for this upgrade was legal defense costs and royalty issues related to the export laws of the USA. Now the PGP program is owned by PGP Corporation.



          Only the command line version is not owned by PGP Corporation which is also not for sale. PGP uses the RSA algorithm and the IDEA encryption algorithm. The PGP is considered to have Windows interface which is more polished



          “GPG” stands for “Gnu Privacy Guard.” GPG is a re-write or upgrade of PGP. It does not use the IDEA encryption algorithm. This is to make it completely free. It uses the NIST AES, Advanced Encryption Standard. All the algorithm data is stored and documented publicly by OpenPGP Alliance. The main reason for this change is that AES costs less than IDEA and is considered more secure. Moreover, it is royalty free because it is not patented. GPG is more compatible than the original PGP with OpenPGP. GPG is also based on a command line. Windows frontends are also available for GPG other than the command line.






          share|improve this answer
























          • Are you sure the original version was GPL? The Wikipedia article just says that "No license was required for its non-commercial use".

            – Keith Thompson
            Sep 12 '12 at 10:05











          • I'm pretty sure it wasn't ever GPL: if it was, there wouldn't have been a need for GPG to be a clean room implementation.

            – James Henstridge
            Oct 3 '12 at 10:33






          • 2





            "GPG is a re-write or upgrade of PGP." That's false. GPG is an implementation of OpenPGP.

            – vcardillo
            Sep 8 '16 at 18:35














          25












          25








          25







          “PGP” stands for “Pretty Good Privacy.” It was developed by Phil Zimmermann. At first it was written as copyrighted freeware under the Gnu Public License. Later, PGP was upgraded and made into a propriety program. The rights for this program are traded around. The reason for this upgrade was legal defense costs and royalty issues related to the export laws of the USA. Now the PGP program is owned by PGP Corporation.



          Only the command line version is not owned by PGP Corporation which is also not for sale. PGP uses the RSA algorithm and the IDEA encryption algorithm. The PGP is considered to have Windows interface which is more polished



          “GPG” stands for “Gnu Privacy Guard.” GPG is a re-write or upgrade of PGP. It does not use the IDEA encryption algorithm. This is to make it completely free. It uses the NIST AES, Advanced Encryption Standard. All the algorithm data is stored and documented publicly by OpenPGP Alliance. The main reason for this change is that AES costs less than IDEA and is considered more secure. Moreover, it is royalty free because it is not patented. GPG is more compatible than the original PGP with OpenPGP. GPG is also based on a command line. Windows frontends are also available for GPG other than the command line.






          share|improve this answer













          “PGP” stands for “Pretty Good Privacy.” It was developed by Phil Zimmermann. At first it was written as copyrighted freeware under the Gnu Public License. Later, PGP was upgraded and made into a propriety program. The rights for this program are traded around. The reason for this upgrade was legal defense costs and royalty issues related to the export laws of the USA. Now the PGP program is owned by PGP Corporation.



          Only the command line version is not owned by PGP Corporation which is also not for sale. PGP uses the RSA algorithm and the IDEA encryption algorithm. The PGP is considered to have Windows interface which is more polished



          “GPG” stands for “Gnu Privacy Guard.” GPG is a re-write or upgrade of PGP. It does not use the IDEA encryption algorithm. This is to make it completely free. It uses the NIST AES, Advanced Encryption Standard. All the algorithm data is stored and documented publicly by OpenPGP Alliance. The main reason for this change is that AES costs less than IDEA and is considered more secure. Moreover, it is royalty free because it is not patented. GPG is more compatible than the original PGP with OpenPGP. GPG is also based on a command line. Windows frontends are also available for GPG other than the command line.







          share|improve this answer












          share|improve this answer



          share|improve this answer










          answered Sep 12 '12 at 8:56









          udhayaudhaya

          25922




          25922













          • Are you sure the original version was GPL? The Wikipedia article just says that "No license was required for its non-commercial use".

            – Keith Thompson
            Sep 12 '12 at 10:05











          • I'm pretty sure it wasn't ever GPL: if it was, there wouldn't have been a need for GPG to be a clean room implementation.

            – James Henstridge
            Oct 3 '12 at 10:33






          • 2





            "GPG is a re-write or upgrade of PGP." That's false. GPG is an implementation of OpenPGP.

            – vcardillo
            Sep 8 '16 at 18:35



















          • Are you sure the original version was GPL? The Wikipedia article just says that "No license was required for its non-commercial use".

            – Keith Thompson
            Sep 12 '12 at 10:05











          • I'm pretty sure it wasn't ever GPL: if it was, there wouldn't have been a need for GPG to be a clean room implementation.

            – James Henstridge
            Oct 3 '12 at 10:33






          • 2





            "GPG is a re-write or upgrade of PGP." That's false. GPG is an implementation of OpenPGP.

            – vcardillo
            Sep 8 '16 at 18:35

















          Are you sure the original version was GPL? The Wikipedia article just says that "No license was required for its non-commercial use".

          – Keith Thompson
          Sep 12 '12 at 10:05





          Are you sure the original version was GPL? The Wikipedia article just says that "No license was required for its non-commercial use".

          – Keith Thompson
          Sep 12 '12 at 10:05













          I'm pretty sure it wasn't ever GPL: if it was, there wouldn't have been a need for GPG to be a clean room implementation.

          – James Henstridge
          Oct 3 '12 at 10:33





          I'm pretty sure it wasn't ever GPL: if it was, there wouldn't have been a need for GPG to be a clean room implementation.

          – James Henstridge
          Oct 3 '12 at 10:33




          2




          2





          "GPG is a re-write or upgrade of PGP." That's false. GPG is an implementation of OpenPGP.

          – vcardillo
          Sep 8 '16 at 18:35





          "GPG is a re-write or upgrade of PGP." That's false. GPG is an implementation of OpenPGP.

          – vcardillo
          Sep 8 '16 at 18:35











          9














          Gnu Privacy Guard and Pretty Good Privacy -- also referred to as GPG and PGP, respectively -- are data encryption and decryption solutions used for transferring and storing information securely. GPG and PGP are nearly identical, with the major difference between them being how they are licensed to the public.



          Read more: The Difference Between GPG and PGP | eHow.com http://www.ehow.com/info_12225332_difference-between-gpg-pgp.html#ixzz26DXDNpJy






          share|improve this answer



















          • 1





            Link is broken.

            – darryn.ten
            Nov 2 '17 at 11:02











          • The downside of links. Thankfully: archive.org

            – mateuscb
            Dec 23 '18 at 19:30
















          9














          Gnu Privacy Guard and Pretty Good Privacy -- also referred to as GPG and PGP, respectively -- are data encryption and decryption solutions used for transferring and storing information securely. GPG and PGP are nearly identical, with the major difference between them being how they are licensed to the public.



          Read more: The Difference Between GPG and PGP | eHow.com http://www.ehow.com/info_12225332_difference-between-gpg-pgp.html#ixzz26DXDNpJy






          share|improve this answer



















          • 1





            Link is broken.

            – darryn.ten
            Nov 2 '17 at 11:02











          • The downside of links. Thankfully: archive.org

            – mateuscb
            Dec 23 '18 at 19:30














          9












          9








          9







          Gnu Privacy Guard and Pretty Good Privacy -- also referred to as GPG and PGP, respectively -- are data encryption and decryption solutions used for transferring and storing information securely. GPG and PGP are nearly identical, with the major difference between them being how they are licensed to the public.



          Read more: The Difference Between GPG and PGP | eHow.com http://www.ehow.com/info_12225332_difference-between-gpg-pgp.html#ixzz26DXDNpJy






          share|improve this answer













          Gnu Privacy Guard and Pretty Good Privacy -- also referred to as GPG and PGP, respectively -- are data encryption and decryption solutions used for transferring and storing information securely. GPG and PGP are nearly identical, with the major difference between them being how they are licensed to the public.



          Read more: The Difference Between GPG and PGP | eHow.com http://www.ehow.com/info_12225332_difference-between-gpg-pgp.html#ixzz26DXDNpJy







          share|improve this answer












          share|improve this answer



          share|improve this answer










          answered Sep 12 '12 at 2:09









          RingtailRingtail

          13.5k1250177




          13.5k1250177








          • 1





            Link is broken.

            – darryn.ten
            Nov 2 '17 at 11:02











          • The downside of links. Thankfully: archive.org

            – mateuscb
            Dec 23 '18 at 19:30














          • 1





            Link is broken.

            – darryn.ten
            Nov 2 '17 at 11:02











          • The downside of links. Thankfully: archive.org

            – mateuscb
            Dec 23 '18 at 19:30








          1




          1





          Link is broken.

          – darryn.ten
          Nov 2 '17 at 11:02





          Link is broken.

          – darryn.ten
          Nov 2 '17 at 11:02













          The downside of links. Thankfully: archive.org

          – mateuscb
          Dec 23 '18 at 19:30





          The downside of links. Thankfully: archive.org

          – mateuscb
          Dec 23 '18 at 19:30


















          draft saved

          draft discarded




















































          Thanks for contributing an answer to Ask Ubuntu!


          • Please be sure to answer the question. Provide details and share your research!

          But avoid



          • Asking for help, clarification, or responding to other answers.

          • Making statements based on opinion; back them up with references or personal experience.


          To learn more, see our tips on writing great answers.




          draft saved


          draft discarded














          StackExchange.ready(
          function () {
          StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2faskubuntu.com%2fquestions%2f186805%2fdifference-between-pgp-and-gpg%23new-answer', 'question_page');
          }
          );

          Post as a guest















          Required, but never shown





















































          Required, but never shown














          Required, but never shown












          Required, but never shown







          Required, but never shown

































          Required, but never shown














          Required, but never shown












          Required, but never shown







          Required, but never shown







          Popular posts from this blog

          GameSpot

          日野市

          Tu-95轟炸機