Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/cryptogladi/security-chat

Messenger for anonymous and private communication
https://github.com/cryptogladi/security-chat

Last synced: 9 days ago
JSON representation

Messenger for anonymous and private communication

Host: GitHub
URL: https://github.com/cryptogladi/security-chat
Owner: CryptoGladi
License: gpl-3.0
Created: 2023-07-17T12:39:21.000Z (over 1 year ago)
Default Branch: master
Last Pushed: 2023-12-26T19:29:16.000Z (11 months ago)
Last Synced: 2023-12-26T21:05:15.009Z (11 months ago)
Language: Rust
Homepage:
Size: 1.8 MB
Stars: 0
Watchers: 1
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

# Security chat

> Messenger for anonymous and private communication

**This project is not ready yet!** Please see [roadmap](doc/roadmap.md)

![license](https://img.shields.io/github/license/CryptoGladi/security-chat?style=for-the-badge) ![GitHub repo size](https://img.shields.io/github/repo-size/CryptoGladi/security-chat?style=for-the-badge) ![GitHub package.json version (subfolder of monorepo)](https://img.shields.io/github/package-json/v/CryptoGladi/security-chat?style=for-the-badge)

# Motivation :boom:

This project was created for the complete safety of its user, but why create another chat? The well-known messenger Telegram is **NOT** secure.

### Why is Telegram insecure?

1. Telegram Chats **Aren't** End-to-End Encrypted by Default

Telegram does encrypt your messages as they travel between your device and the Telegram server. However, these messages sit on the server so you can access them from multiple devices. A breach of Telegram's servers could thus result in your **messages being exposed**. Security chat also stores your messages on the server, but **only you can decrypt your messages**!

2. Telegram Collects Your Contact Data

Telegram collects basic data about the **contacts** on **your phone**. It is very dangerous! Only **your nickname** is required to register with the Security chat.

3. Telegram is **not** open source

Official Telegram clients are open source, while the server is **closed-sourced** and **proprietary**. The community **cannot check** servers for **vulnerabilities** and **collect data**.

4. Telegram uses C++

C++ is a highly unsafe programming language. The abundance of strange syntactic constructions, a lot of undefined behaviors makes it extremely unsafe for creating cryptographic programs // TODO

5. Telegram is [vulnerable](https://www.gamingdeputy.com/the-fsb-learned-to-track-the-traffic-of-telegram-whatsapp-and-signal/) and has ties to the [government](https://restoreprivacy.com/telegram-sharing-user-data/) and [corporation](https://caliber.az/en/post/89269/)