User:M-G/sandbox

Source: Wikipedia, the free encyclopedia.

[1]


Messengers with client-to-client encryption

The following table is an overview of instant messaging clients that provide end-to-end encryption. Some of the listed client applications do not provide end-to-end encryption by default. These clients may require that users install a separate plugin, turn on a setting, or use an optional mode. In these cases, the encryption-related information in this table is only applicable when the encryption is enabled.

Client Encrypted by default Development status Open source client[a] Servers Contact verification[b] Encryption ciphers Forward secrecy[c] Multiple encryption[d][e] Encrypted groupchat[f] Encrypted file transfer[f] Public key and IP unrelated[g] Proxy /Tor[h] Transport[i] Asynchronous encryp. communication[j] Encrypted client data[k] Screenshot protection[l] Self-destructing messages[l]
Open source servers Distributed[m] Federated[m] Data Symmetric[d][n] Asymmetric[o] Asym. key size[p] TCP UDP SCTP
Profile information[q] Chat metadata[r] Contact lists[s] E2EE Cloud backup McEliece RSA DSA ECC NTRU El Gamal Default Max.
Briar Yes Active, public beta Yes No Yes Yes ? ? ? Yes ? ? ECC-256 ? Yes Yes Yes No Yes Yes Yes ? ? No Yes Yes No
ChatSecure allows unencrypted Active Yes Yes Yes Yes No Yes[2] Yes[t] ? ? ? ? ? ? ? ? Yes[t] Optional ? ? ? Optional ? ? ? No ? ? No
Conversations allows unencrypted Active Yes Yes Yes Yes Stored; not client-side encrypted[3] Stored[3] No Yes Yes[t] ? ? ? ? ? ? ? ? Depends Optional Optional Yes Optional Optional ? ? ? Optional ? ? No
Cryptocat Yes Discontinued Yes ? ? No No Yes[4] ? ? ? ? ? ? ? ? ? Yes[4] Yes[4] No groupchat Yes[4] ? ? ? ? ? ? ? ? ?
FireChat[5] allows unencrypted[u] Active No No ? ? ? ? ? ? ? ? ? ? ? ? Includes groupchat, but it is not encrypted ? ? No ? ? ? Yes ? ? No
iMessage[6] allows unencrypted[v] Active No[6] No ? No ? No[2] ? ? Yes[7] ? ? ? ? ? ? No[6] ? Depends[8] Yes[9] ? No ? ? ? Yes ? No No
Line[10][11] Yes Active No No Yes[12] No Stored; not client-side encrypted[12] Stored[12] No No ? ? ? ? Yes[13] ? ? ECC-256[13] No ? Yes[11] ? ? No ? ? ? Yes No No No
RetroShare Yes Active Yes[w] No Yes[2] Yes ? Yes ? ? No No ? ? Yes[2] Yes Yes Yes Optional Optional Yes Yes No Yes Yes ? ?
Jami Yes[14] Active Yes[w] Yes Yes Stored[15] No ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ?
Ricochet Yes Discontinued[16] Yes No No[17] ? ? ? ? ? ? ? ? ? Yes[17] No[17] No groupchat No Yes Yes ? ? ? No No[17] No No
Sicher Yes Active No[w] No ? No ? ? Yes ? Yes ? ? No No RSA-2048[18] No No Yes Yes No No Yes No No ? Yes ? Yes
Signal Yes[x] Active Yes[w] Yes Yes[19] No[20] Stored; client-side encrypted[21] Not stored[22] Not stored[22][23] No Yes[2] Yes ? ? No Yes No No ECC-256[24] Yes Yes Yes Yes Yes Yes Yes[25] Yes[25] No Yes Yes[y] Yes Yes
Silent Phone Yes Active Viewable source[26] No No No Stored[27] Not stored[citation needed] Not stored[citation needed] ? Yes[2] ? ? ? ? ? ? ? ? ? Yes[2] Yes[28] Yes[29] Yes Yes ? Yes Yes ? Yes Yes[citation needed] Yes Yes
Surespot Yes Active Yes[w] No ? No Stored; client-side encrypted[30] Stored[30] Stored[30] No Yes[2] Yes ? No ? Yes[31] No No ECC-521[31] Yes No No groupchat No No ? Yes No No ? ? ? No
Threema Yes Active Partially[z][32] No ? No Stored; client-side encrypted[33] Not stored[33] Not stored[33] Yes[34] Yes[2] ? ? ? ? ? ? ? ? ? No[aa] ? Yes Yes ? ? ? ? ? Yes Yes ? No
Tox Yes Active Yes[w] No Yes Yes ? Yes ? ? No No ? ? Yes Yes Yes Yes Yes Yes Yes Yes No No No No No
Viber allows unencrypted[ab][35] Active No No ? No Stored; not client-side encrypted[36] Stored[36] Stored[36] No[37] Yes[38] ? ? ? ? Yes[38] ? ? ECC-256[38] Yes[38] ? Depends[38][39] Yes[38] ? No ? ? ? Yes[38] ? No No
WhatsApp Yes Active Partially[z][40] No Yes No Stored; not client-side encrypted[41] Stored[41] Stored[41] Yes[42] Yes[40] Yes[40] ? ? ? Yes[40] ? ? ECC-256[40] Yes[40] Yes[40] Yes[40] Yes[40] Yes[40] No ? ? ? Yes[40] No No No
Wickr Me Yes Active Partially[z][43] No ? No Stored; not client-side encrypted[44] Not stored[45] Not stored[45] ? Yes[46] ? ? ? ? Yes[46] No No ECC-521[46] Yes[46] Yes[46] Yes ? ? No Yes ? ? Yes Yes[46] Capture notification[47] Yes
Wickr Pro Yes Active Partially[z][48] No ? No Stored; not client-side encrypted[44] Not stored[45] Not stored[45] ? Yes[46] ? ? ? ? Yes[46] No No ECC-521[46] Yes[46] Yes[46] Yes ? ? No Yes ? ? Yes Yes[46] ? Yes
Wire Yes Active Yes[49] Yes[50] ? No[50] Stored; not client-side encrypted[51] Stored[51] Stored[51] Only encrypted if using the iOS version[52] Yes[53] Yes[54] ? ? ? Yes[54] ? ? ECC-256[54] Yes Yes Yes Yes[55] ? No Yes[54] Yes[54] ? Yes Yes[citation needed] No Yes[56]
TextSecure Yes Discontinued[ac] Yes[w][57] Yes[ad] Yes Yes, briefly[ad] Not stored Not stored No Yes[2] Yes ? ? No Yes No No ECC-256[24] Yes Yes Yes Yes Yes No Yes No No Yes[58] Yes Yes No
WASTE Yes Discontinued Yes[w] No No Yes ? ? ? No No ? ? No No No Yes No No Yes No No ? ? ? ? ?
Adium No Active Yes[w] Yes Yes Yes No Yes Yes[t] ? ? ? ? ? ? ? ? Yes[t] ? ? Yes[t] ? ? ? ? ? No No No No
Google Allo (incognito mode)[59] No Discontinued Partially[z] No Yes[60] No No ? Yes ? ? ? Yes ? ? ECC-256 Yes Yes Optional ? ? No ? ? ? Yes ? ? Yes
Facebook Messenger (secret conversations)[61] No Active Partially[z][62] No Yes[63] No Stored; not client-side encrypted Stored No Yes[62] Yes[62] ? ? ? Yes[62] ? ? ECC-256[62] Yes[62] Yes Includes groupchat, but it is not encrypted[64] ? ? No ? ? ? Yes Yes[62] ? Yes[62]
Gajim No Active Yes Yes Yes Yes No Yes Yes[t] ? ? ? ? ? ? ? ? Yes[t] Optional Optional[ae] Yes ? No ? ? ? Optional ? ? No
Jitsi No Active Yes Yes Yes Yes No Yes[2] Yes[t] ? ? ? ? ? ? ? ? Yes[t] ? ? Yes[t] ? ? ? ? ? No ? No No
KakaoTalk (secret chats)[65] No Active No ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ?
Kopete[af] No Active Yes[w] Yes Yes Yes No Yes Yes[t] ? ? ? ? ? ? ? ? Yes[t] ? Includes groupchat, but it is not encrypted Yes[t] ? ? ? ? ? No No ? ?
Miranda IM No Active Yes[w] ? ? ? No Yes[66] Yes[67] ? Optional[ae][68] ? ? ? ? ECC-192[68] ? ? ? ? Yes[69] ? ? Yes ? ? ? ? ? ?
Pidgin No Active Yes[w] Yes Yes Yes No Yes[2] Yes[t][70] ? Optional[ae][71] ? ? ? ? ? ? Yes[t][70] ? ? Yes[70] ? ? Yes ? ? Optional[ag] ? ? ?
Riot.im No Active, public beta Yes Yes Yes Yes ? ? ? ? Device verification Yes ? ? ? Yes ? ? ECC-256 ? Optional ? Yes Yes Yes ? Yes ? ? Yes ? No No
Telegram (secret chats) No Active Yes[w] No Yes No Stored; not client-side encrypted Not stored[72] Stored[72] No Yes[2] Yes ? Yes ? No No No RSA-2048[73] Sort of[ah] Yes Includes groupchat, but it is not encrypted Yes No No Yes No ? No Optional Yes, warning Yes
Xabber No Active Yes Yes Yes Yes Stored No ? Yes[t] ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ?
Client name Encrypted by default Development status Open source client[a] Servers Contact verification[b] Encryption ciphers Forward secrecy[c] Multiple encryption[d][e] Encrypted groupchat[f] Encrypted file transfer[f] Public key and IP unrelated[g] Proxy /Tor[h] Transport[i] Asynchronous encryp. communication[j] Encrypted client data[k] Screenshot protection[l] Self-destructing messages[l]
Open source servers Distributed[m] Federated[m] Data Symmetric[d][n] Asymmetric[o] Asym. key size[p] TCP UDP SCTP
Profile information[q] Chat metadata[r] Contact lists[s] E2EE Cloud backup McEliece RSA DSA ECC NTRU El Gamal Default Max.
  1. ^ "Why can't I see my conversation history?". Wire – Support. Retrieved 2018-06-24.
  2. ^ a b c d e f g h i j k l m Cite error: The named reference EFF was invoked but never defined (see the help page).
  3. ^ a b "Privacy Policy". Conversations.im. Retrieved 11 January 2018.
  4. ^ a b c d "Security". Cryptocat. Archived from the original on 7 April 2016. Retrieved 14 July 2016.
  5. ^ "FireChat launches new offline private messaging option". BBC News. BBC. 30 July 2015. Retrieved 11 July 2016.
  6. ^ a b c Lee, Micah (2 March 2015). "You Should Really Consider Installing Signal, an Encrypted Messaging App for iPhone". The Intercept. First Look Media. Retrieved 12 January 2016. Apple's iMessage ... employs strong encryption, but only when communicating between two Apple devices and only when there is a proper data connection. Otherwise, iMessage falls back on insecure SMS messaging. iMessage also lacks forward secrecy and inspectable source code.
  7. ^ Garman, Christina; Green, Matthew; Kaptchuk, Gabriel; Miers, Ian; Rushanan, Michael (21 March 2016). "Dancing on the Lip of the Volcano: Chosen Ciphertext Attacks on Apple iMessage" (PDF). Johns Hopkins Information Security Institute. Johns Hopkins University. Retrieved 10 July 2016.
  8. ^ "Types of group messages". Apple. 3 June 2016. Retrieved 16 July 2016.
  9. ^ Nakashima, Ellen (21 March 2016). "Johns Hopkins researchers poke a hole in Apple's encryption". The Washington Post. Nash Holdings LLC. Retrieved 10 July 2016.
  10. ^ Sawers, Paul (30 June 2016). "Ahead of IPO, mobile messaging giant Line introduces end-to-end encryption by default". VentureBeat. Retrieved 15 July 2016.
  11. ^ a b Shin, Ki Bin (11 August 2016). "The next step for even safer messaging: Letter Sealing". Line Corporation. Retrieved 30 September 2016.
  12. ^ a b c "LINE Privacy Policy". LINE. Retrieved 6 December 2017.
  13. ^ a b JI (13 October 2015). "New generation of safe messaging: "Letter Sealing"". LINE Engineers' Blog. LINE Corporation. Retrieved 15 July 2016.
  14. ^ "About Ring". Savoir-faire Linux Inc. Retrieved 8 December 2017. Your communications will be encrypted without any exception with the most advanced current techniques (see our page dedicated to security). Ring stores your secrets (private key for encryption and identity) only on the machine that runs it.
  15. ^ "Privacy and anonymity". Savoir-faire Linux Inc. Retrieved 8 December 2017. One possible weakness is that OpenDHT collects and saves metadata. This makes it possible for eavesdroppers to observe the traffic on some DHT node and see who is talking to whom.
  16. ^ "Is not dead, but the development ceased".
  17. ^ a b c d Hertz, Jesse; Jara-Ettinger, Patricio; Manning, Mark (15 February 2016). "Ricochet Security Assessment" (PDF). NCC Group. Retrieved 19 February 2016.
  18. ^ "Sicher FAQ". www.shape.ag. Retrieved 6 October 2017.
  19. ^ Greenberg, Andy (29 July 2014). "Your iPhone Can Finally Make Free, Encrypted Calls". Wired. Condé Nast. Retrieved 29 July 2016. The group has set up dozens of servers to handle the encrypted calls in more than 10 countries around the world to minimize latency.
  20. ^ Edge, Jake (18 May 2016). "The perils of federated protocols". LWN.net. Retrieved 29 July 2016.
  21. ^ Lund, Joshua (6 September 2017). "Encrypted profiles for Signal now in public beta". Open Whisper Systems. Retrieved 5 December 2017.
  22. ^ a b "Grand jury subpoena for Signal user data, Eastern District of Virginia". Open Whisper Systems. 4 October 2016. Retrieved 5 December 2017.
  23. ^ Marlinspike, Moxie (26 September 2017). "Technology preview: Private contact discovery for Signal". Open Whisper Systems. Retrieved 5 December 2017.
  24. ^ a b Frosch, Tilman; Mainka, Christian; Bader, Christoph; Bergsma, Florian; Schwenk, Jörg; Holz, Thorsten (2014). "How Secure is TextSecure?" (PDF). Cryptology ePrint Archive. International Association for Cryptologic Research (IACR). Retrieved 13 July 2016.
  25. ^ a b Kolenkina, Masha. "Which TCP & UDP ports need to be available?". Signal.org. Retrieved 23 March 2018.
  26. ^ "Zrtp – SilentCircle". Retrieved 6 October 2017.
  27. ^ "Silent Circle Privacy Policy". Silent Circle. Retrieved 17 May 2018.
  28. ^ "HappyFox – The page you are looking for doesn't exist (404)". support.silentcircle.com. Retrieved 6 October 2017.
  29. ^ "Silent Phone 6.0 is Here!". Silent Circle. 15 June 2017. Retrieved 5 December 2017.
  30. ^ a b c "Data and threat analysis". Surespot. Retrieved 6 December 2017.
  31. ^ a b "Everyday Usage Improvements #27". user:2fours, item 3: github.com. 2013-11-10.{{cite web}}: CS1 maint: location (link)
  32. ^ "Why is Threema not Open Source?". Threema. Retrieved 2016-05-24.
  33. ^ a b c "Frequently asked questions". Threema GmbH. Retrieved 5 December 2017.
  34. ^ "What makes Threema Safe secure?". Threema GmbH. Retrieved 10 April 2019.
  35. ^ "Requirements for enhanced security features". Viber Security FAQ. Viber. n.d. Retrieved 16 July 2016. Note that Viber for Windows Phone 8 will not support the new security features. It will continue to secure calls and messages through standard encryption methods.
  36. ^ a b c "Viber Privacy Policy". Viber Media S.à r.l. March 2017. Retrieved 6 December 2017.
  37. ^ "Types of data that are backed up and restored". Viber Media S.à r.l. Retrieved 10 April 2019. The following types of message can't be saved in a backup: Hidden/ secret chats message history
  38. ^ a b c d e f g "Viber Encryption Overview". Viber. 3 May 2016. Retrieved 9 July 2016.
  39. ^ "Are my group chats encrypted as well?". Viber Security FAQ. Viber. n.d. Retrieved 16 July 2016. A group conversation will only use the upgraded security methods if all group participants are using the upgraded version of Viber.
  40. ^ a b c d e f g h i j k "WhatsApp Encryption Overview – Technical white paper" (PDF). WhatsApp Inc. 4 April 2016. Retrieved 5 April 2016.
  41. ^ a b c "WhatsApp Privacy Policy". WhatsApp Inc. 25 August 2016. Retrieved 5 December 2017.
  42. ^ "WhatsApp quietly added encryption to iCloud backups". TechCrunch. Retrieved 2018-11-09.
  43. ^ "Wickr Me Private Messenger: udpdate & what's coming next". Wickr Inc. 14 August 2017. Retrieved 1 October 2017.
  44. ^ a b "Privacy Policy". Wickr Inc. 16 September 2017. Retrieved 5 December 2017. You can set a public profile avatar, which will become visible to others on Wickr Me so please do not add an avatar if you do not want it to be viewed by others users within the Wickr Me App.
  45. ^ a b c d "Legal Process Guidelines". Wickr Inc. Retrieved 5 December 2017.
  46. ^ a b c d e f g h i j k l "Wickr Messaging Protocol" (Whitepaper). Wickr Inc. 2017. Retrieved 19 February 2017.
  47. ^ Sanchez, Seth (1 August 2017). "Why don't you disable screen capture?". Wickr Inc. Retrieved 1 October 2017.
  48. ^ Eddy, Max (15 February 2017). "Wickr Releases Crypto Protocol on GitHub". PCMag. Retrieved 19 February 2017.
  49. ^ "Wire Swiss GmbH". GitHub. Wire Swiss GmbH. Retrieved 25 July 2016.
  50. ^ a b "Wire server code now 100% open source – the journey continues". Medium. Wire Swiss GmbH. 19 September 2017. Retrieved 23 September 2017.
  51. ^ a b c "Wire Privacy Whitepaper" (PDF). Wire Swiss GmbH. 23 October 2017. Retrieved 5 December 2017.
  52. ^ "History backup comes to Wire". Wire Swiss GmbH. 23 April 2018. Retrieved 10 April 2019.
  53. ^ "How can I compare key fingerprints?". Wire Swiss GmbH. Retrieved 11 March 2016.
  54. ^ a b c d e "Wire Security Whitepaper". Wire Swiss GmbH. Retrieved 13 April 2016.
  55. ^ "How can I send a file?". Wire – Support. Retrieved 6 October 2017.
  56. ^ "Safe and tidy with Timed Messages". Wire Swiss. 25 October 2016. Retrieved 25 October 2016.
  57. ^ Open Whisper Systems. "TextSecure". GitHub. Retrieved 17 January 2015.
  58. ^ Moxie Marlinspike (22 August 2013). "Forward Secrecy for Asynchronous Messages". Open Whisper Systems. Retrieved 2014-03-01.
  59. ^ Greenberg, Andy (18 May 2016). "With Allo and Duo, Google Finally Encrypts Conversations End-to-End". Wired. Condé Nast. Retrieved 18 May 2016.
  60. ^ "Data center locations". Google Inc. Retrieved 2 August 2016.
  61. ^ Greenberg, Andy (8 July 2016). "'Secret Conversations:' End-to-End Encryption Comes to Facebook Messenger". Wired. Condé Nast. Retrieved 8 July 2016.
  62. ^ a b c d e f g h "Messenger Secret Conversations" (PDF) (Whitepaper). Facebook. 8 July 2016. Archived from the original (PDF) on 8 July 2016. Retrieved 8 July 2016.
  63. ^ Harding, Luke (25 September 2015). "The node pole: inside Facebook's Swedish hub near the Arctic Circle". The Guardian. Guardian Media Group. Retrieved 2 August 2016.
  64. ^ Paul, Ian (8 July 2016). "Facebook brings end-to-end encryption to Messenger with 'secret conversations'". PCWorld. IDG. Retrieved 9 July 2016.
  65. ^ Russell, Jon (7 December 2014). "Chat App Kakao Talk Begins Offering Opt-In Encryption Following Recent Privacy Storm". TechCrunch. AOL Inc. Retrieved 21 October 2016.
  66. ^ "SecureIM – plugin development and mod". May 2009.
  67. ^ "Pluginlist". miranda-im.org. Retrieved 27 March 2017.
  68. ^ a b ""SecureIM – plugin development and mod"". 23 April 2009.
  69. ^ "Off-the-Record (OTR) encryption plugin discussion". 10 June 2008.
  70. ^ a b c "Plugins: Off-the-Record Messaging (OTR)". pidgin.im. Retrieved 19 December 2014.
  71. ^ "Plugins: "Pidgin-encryption"". sourceforge.net. Retrieved 19 December 2014.
  72. ^ a b "Privacy Policy". Telegram. Retrieved 5 December 2017.
  73. ^ Jakobsen, Jakob; Orlandi, Claudio (8 December 2015). "On the CCA (in)security of MTProto" (PDF). Cryptology ePrint Archive. International Association for Cryptologic Research (IACR). Retrieved 13 July 2016.


Cite error: There are <ref group=lower-alpha> tags or {{efn}} templates on this page, but the references will not show without a {{reflist|group=lower-alpha}} template or {{notelist}} template (see the help page).

Retrieved from "https://en.wikipedia.org/w/index.php?title=User:M-G/sandbox&oldid=920692987"