Please note that this privacy policy applies only to information collected through our websites and not to any information you may provide to any third-party sites to which we may link. There may be other controllers as well (e.g.: advertisers), and we encourage you to consult their privacy policies to learn more about their privacy practices.Įmail: +36-30-608-85-50 Data storage and usage purposes Data controllerįor the purpose of data protection laws applicable to you in the location from which you provide your information, we are the "data controller" of the information you provide to our websites.
Before you submit/upload any information or file to our websites, please carefully review this policy. This privacy policy describes and governs our information collection, use, and sharing practices. We are committed to protecting and respecting your privacy.
#CRYPTOCAT GROUP CHAT CODE#
We may provide the source code of the server and client application if given a well-founded request (e.g.
#CRYPTOCAT GROUP CHAT PASSWORD#
It is worth mentioning that the channel password never leaves the client, the username is only transmitted over the third layer among the members, and the channel name is received by the server in an SHA-256 hashed form through the second layer. Additionally, this method ensures that members entering the same channel with a different password cannot communicate with each other. These keys cannot be reconstructed even with the knowledge of the second layers decrypted network traffic and the secret passwords. Shared ECDH keys are combined with the provided channel passwords, which results in unique and one-time encryption keys between the parties. Once the server connection is secured, it joins the given channel and starts building up end-to-end encrypted layers with each individual member (using ECDH for key exchange and ChaCha20- Poly1305 for ciphering).
This second layer also prevents transparent proxies (with their own CA certificates installed on the client) from inspecting their communication. During key exchange, messages from the server are RSA-signed and verified by the client to make sure it is not connecting to a forged destination. Then they create an additional encrypted layer, using ECDH for key exchange and AES-256 for ciphering. The client application establishes a WebSocket (over TLS) connection with the chat server. Real-time messaging - Each piece of data is exchanged immediately between the parties nothing is queued or stored, even for a single second. Outstanding privacy - Conversations can happen without providing any personal detail or account. Triple encryption - Two additional security layers protect messages, on top of the standard TLS protocol.
We have created a unique solution which does not require any sort of data storage and makes sure that messages cannot be decrypted even with the complete knowledge of the server contents, network traffic, and provided secret passwords. Our goal was to create an anonymous chat platform which can be used safely over inspected infrastructures so that conversations cannot be recovered even if the server has been seized or one of the participants has been questioned. It does not try to replace popular messaging applications, but instead to provide an alternate, secure channel for confidential discussions. No databases, no accounts, no chat logs.Īimed for anyone who wants to be sure that their conversations are kept private and prefers more security over fancy features. CHATCRYPT The Secure Channel Welcome to ChatCryptĪn end-to-end encrypted group chat that doesn't store anything in the cloud.
0 kommentar(er)
