age
A simple, modern and secure encryption tool with small explicit keys
age is a simple, modern, and secure file encryption tool that prioritizes ease of use and security best practices. Unlike complex encryption systems with numerous configuration options, age features small explicit keys, no config files, and UNIX-style composability that makes it easy to integrate into scripts and workflows. The tool supports both traditional and post-quantum encryption methods, ensuring files remain secure even against future quantum computer attacks.
Designed for developers, system administrators, and security-conscious users, age can encrypt files using public keys, passphrases, or even SSH keys for convenience. It supports multiple recipients per file, allowing teams to share encrypted data easily. The tool's straightforward command-line interface makes common tasks like encrypting backups or sharing sensitive files simple and secure.
age has grown into a comprehensive ecosystem with implementations in multiple programming languages (Go, Rust, TypeScript), hardware token support through plugins like YubiKey integration, and extensive package manager support across operating systems. Its format specification is openly documented, and the tool emphasizes transparency and auditability in its cryptographic design.
Installation
# via Homebrew
brew install age
# via APT (Debian/Ubuntu)
apt install age
# via Go Install
go install filippo.io/age/cmd/...@latest