https://github.com/arad-afzali/secure-messaging-client-side

Secure Chat Client is a Python-based application designed for encrypted end-to-end messaging. It connects to a secure chat server, exchanges RSA public keys, and ensures secure communication through encrypted messages. Features include a PyQt5 GUI, secure key exchange, and optional SSL/TLS support for enhanced security.
https://github.com/arad-afzali/secure-messaging-client-side

encrypted-messaging encrypted-messaging-service end-to-end end-to-end-encryption public-key-exchange rsa-encryption rsa-encryption-decryption secure-chat secure-chat-application secure-chat-client secure-communication ssl-tls

Last synced: 2 months ago
JSON representation

Secure Chat Client is a Python-based application designed for encrypted end-to-end messaging. It connects to a secure chat server, exchanges RSA public keys, and ensures secure communication through encrypted messages. Features include a PyQt5 GUI, secure key exchange, and optional SSL/TLS support for enhanced security.

• Host: GitHub
• URL: https://github.com/arad-afzali/secure-messaging-client-side
• Owner: Arad-Afzali
• License: mit
• Created: 2024-06-03T12:10:22.000Z (8 months ago)
• Default Branch: main
• Last Pushed: 2024-06-08T22:29:49.000Z (8 months ago)
• Last Synced: 2024-10-17T08:02:27.899Z (3 months ago)
• Topics: encrypted-messaging, encrypted-messaging-service, end-to-end, end-to-end-encryption, public-key-exchange, rsa-encryption, rsa-encryption-decryption, secure-chat, secure-chat-application, secure-chat-client, secure-communication, ssl-tls
• Language: Python
• Homepage:
• Size: 61.5 MB
• Stars: 2
• Watchers: 1
• Forks: 1
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

        
# Secure Chat Client (end-to-end encryption)

This is the client application for a secure chat system. It connects to a secure chat server, exchanges public keys for secure communication, and allows encrypted messaging between clients.

![alt text]()

## Server Application

The server application is necessary for the connection of client apps. You can find the server application repository and instructions on how to set it up below:

https://github.com/Arad-Afzali/secure-messaging-server-side

Please follow the installation and usage instructions in the server application's README to ensure proper communication with the clients.

## Features

- Generates RSA keys for secure communication with a bit length of 4096 bits upon initialization.

- Encrypts and decrypts messages using RSA and OAEP padding.

- Connects to the secure chat server and exchanges public keys with another client.

- GUI for connecting, sending, and receiving messages.

- Secure Key Exchange to ensure only intended peers can access the keys.

- Optional SSL/TLS Support to encrypt the entire communication channel between the client and server, ensures safe public   key exchange, but even without SSL/TLS, the application maintains a high level of security for encrypted messages.

## Requirements

- Python 3.x

- PyQt5

- pycryptodome

## Installation

1. **Clone the repository**:

    ```bash

    git clone https://github.com/Arad-Afzali/secure-messaging-client-side.git

    cd secure-messaging-client-side

    ```

2. **Create a virtual environment and activate it** (Recommended):

    **On macOS and Linux:**

    ```bash

    python3 -m venv venv

    source venv/bin/activate

    ```

    **On Windows:**

    ```bash

    python -m venv venv

    venv\Scripts\activate

    ```

3. **Install the required packages**:

    ```bash

    pip install -r requirements.txt

    ```

### Note (Optional but Recommended Steps)

4. **SSL/TLS Support**:

    To enable SSL/TLS support, you need to wrap the socket with SSL/TLS. Uncomment the relevant sections in the ChatClient class and provide the path to your certificate file:

    ```bash

    # Uncomment here for SSL/TLS certificate---------------------

    # Wrap the socket with SSL/TLS

    # context = ssl.create_default_context()

    # context.verify_mode = ssl.CERT_REQUIRED

    # context.check_hostname = True 

    # context.load_verify_locations('path/to/fullchain.pem')

    # self.sock = context.wrap_socket(self.sock, server_hostname=host)

    # ------------------------------------------------------------

    ```

5. **Obtaining SSL/TLS Certificates Self-Signed Certificates (for testing purposes)**:

    You can generate self-signed certificates using OpenSSL:

    

    ```bash

    # Generate a new RSA private key

    openssl genrsa -out client.key 4096

    # Generate a Certificate Signing Request (CSR)

    openssl req -new -key client.key -out client.csr

    # Generate a self-signed SSL certificate

    openssl x509 -req -days 365 -in client.csr -signkey client.key -out client.crt

    ```

6. **Obtaining Certificates from a Certificate Authority (CA)**:

    For production, it is recommended to obtain certificates from a trusted CA. Services like Let's Encrypt offer free SSL/TLS certificates:

    Follow the instructions on the Let's Encrypt website to obtain your certificate.

    Use the obtained fullchain.pem and privkey.pem files in the SSL/TLS configuration.

## Usage

1. **Start the client application**:

    ```bash

    python3 client.py

    ```

2. **Enter the server IP or domain and port, then click "Connect".**

3. **Once connected, exchange messages securely with your peer.**

## Contributing

Contributions are welcome! Please open an issue or submit a pull request.