The problem? GPG is basically unusable for normal people. The key management is confusing, the command line flags make no sense, and most people just give up before even encrypting their first message.
So I built KeychainPGP. The idea is simple:
Copy text > Ctrl+Shift+E > Pick a recipient > Paste the encrypted message
Copy a PGP message > Ctrl+Shift+D > Read the decrypted text
Under the hood:
- Rust workspace with 6 crates, powered by Sequoia-PGP (modern OpenPGP implementation, pure Rust) - Tauri v2 + Svelte 5 for the frontend, the app is around 15 MB - Works on Windows, Linux, macOS and Android - Also works in the browser via WASM (same crypto engine, nothing processed server-side) - OPSEC mode: keys only in RAM, no traces on disk, Tor proxy support - Portable mode: can run from a USB stick - Translated in 20 languages
The whole crypto layer compiles to both native and WASM with zero unsafe code, thanks to Sequoia's pure Rust backend. I also recently did a security audit on the integration layer - 33 findings fixed, the rest is tracked in issues.
I'm working on this alone and would really appreciate some help:
- macOS testers: I don't have a Mac so I can't verify the build works properly - iOS: I'd love to publish on iOS but I have zero experience with App Store and Apple signing, if someone has done this before I'd really appreciate some guidance - UX feedback: especially from people who tried GPG and gave up - Security review: crypto is handled by Sequoia-PGP but the integration code could definitely use more eyes
You can try it right now in the browser (no install): https://keychainpgp.github.io Downloads: https://github.com/keychainpgp/keychainpgp/releases
MIT/Apache-2.0