Encrypted communication is hard enough as it is, without making software that requires using it in a precise way or you may as well be encrypting with ROT13. The great task before us is usability, with secure defaults and safe erroring. I'd like to believe that maybe the NSA issues will get developers focused on security and encryption again, rather than leaving it only as the province of cypherpunks and activists. What we need isn't standalone products or apps, but for well-designed encryption to be baked in to commonly-used software (or even the base protocols), available and enabled by default, for everyone.
#TORCHAT UNSAFE INSTALL#
(Contrast Pidgin, which requires you to install a plugin for OTR, which most users won't ever do, and is the unfortunately typical way of dealing with anything encryption-related.) And I think it's great that they treat encryption as a core feature rather than a bolt-on afterthought is refreshing. If you enable OTR and chat with someone else using Adium, your chats can be encrypted without having to do anything else. OTR Messaging probably has the biggest installed base of any perfect-forward-secrecy / encrypted messaging product, by virtue of being part of Adium by default. The problem is actually getting tools that support it out into the hands of users and getting them in use, so that network effects take over and you can't identify people of interest just because they happen to be using encrypted communications of some sort. The design stuff is pretty well-understood by now. The problem isn't designing cryptography or even secure messaging frameworks. Very interesting, but I've seen a lot of "interesting" stuff over the years and it seems to make it to a 0.1 or 0.2 pre-alpha release and then die out when the developer behind it decides to scratch some other itch. ( wired, faq, whitepaper, subreddit, github) posted by jeffburdges (24 comments total) Twister end-to-end encrypts private messages, but offers no forward-security or resistance to traffic-analysis. Similarly, " Twister is a fully decentralized peer-to-peer microblogging platform" designed to provide censor-resistant public posting. ( demo, wikipedia, subreddit, Email gateway, github) " Bitmessage is a decentralized, end-to-end encrypted, peer-to-peer, trustless communications protocol that can be used by one person to send encrypted messages to another person, or to multiple subscribers." Bitmessage appears relatively fast and stable, but possess several weaknesses, including a lack of forward-security. There are several interesting new tools for more public communications too, such as microblogging and group chat, where forward-security is arguably less stringent. Previously, TorChat resists traffic analysis but cannot provide asynchronous communication and lacks forward-security. Implementation I've used could not provide asynchronous communication, although presumably support could added, albeit perhaps with a warning. Yet, they're vulnerable to traffic analysis at either the network or server. Of course, GPG encrypted Email is vulnerable to traffic analysis as well. Their forward-security makes OtR and ZRTP preferable to Email with GnuPG or PGP. Jitsi, Adium, and other multi-protocol clients provide mature support for both OtR and ZRTP. ZRTP provides similar functionality for VoIP communication. Off-the-record messaging layers end-to-end encryption with strong forward-security over existing IM protocols like Jabber/XMPP, GTalk, Facebook chat, AIM, etc., but not Skype. Pond is afaik the only protocol that offers both forward-security and resistance to traffic-analysis :
#TORCHAT UNSAFE MAC OS X#
This product is produced independently from the Tor® anonymity software and carries no guarantee from The Tor Project about quality, suitability or anything else.Pond's GUI presumably works well under Linux, but I found the CLI fares better under Mac OS X currently. won't be able to find out where your contacts are located physically. won't be able to find out with whom you are communicating. won't be able to find out what you send or receive. Compatible with all other TorChat clients (Windows, MacOS X)īy utilizing Tor(™) hidden services this app ensures that nobody will be able to find out where you are!Įven if someone would monitor your internet connection, they Support for retina devices, including the iPhone 5 Provides a secure communication channel by utilizing Tor(™) hidden services. Notifications while the app is running in background. Connections are kept 10 minutes after going to background. Strong anonymity while being easy to use. Fully decentralized using peer to peer technology. ITorChat is a decentralized, encrypted and anonymous instant messaging application using Tor(™) to provide the best privacy currently available.
0 kommentar(er)
