0 Persons are tagged with #simplex

#simplex

aktionfsa@diasp.eu
Aktion Freiheit statt

23.10.2024 SimpleX - neuer verschlüsselter Messenger

Dezentral, verschlüsselt, sicher, Open Source

In vielen Beiträgen haben wir bereits über sicher verschlüsselte Open Source Messenger berichtet (Sichere Messenger , Privatsphäre schützen - was tun? ). Unsere letzten Empfehlungen waren Session, Signal, Briar, ...

Nun kommt ein neues Programm dazu: Der Open-Source-Messenger SimpleX. Das Programm gab es Anfang des Jahres für Desktopumgebungen und nun steht es bei Android und für das iPhone in den App Stores zum Download für Smartphones/Handy. Für Android Nutzer, die vorsichtshalber auf den Google Play Store verzichten wollen, gibt es auch die APK Datei direkt als Download.

Im Gegensatz zu Signal und genau wie bei Session braucht man für den eigenen Acount keine Telefonnummer und es gibt keinen zentralen Server über den die Nachrichten laufen. Die (dezentralen) Server kann man bei Bedarf auch selbst betreiben.

Zur Kontaktaufnahme ist lediglich der Austausch von QR-Codes notwendig. In der nächsten Version sollen auch verschlüsselte Audio- und Videoanrufe via WebRTC zur Verfügung stehen.

Ausprobieren und verschlüsselt kommunizieren! Nicht vergessen, vorgestern war Global Encryption Day.

Mehr dazu bei https://www.heise.de/news/Dezentral-anonym-verschluesselt-SimpleX-Messenger-jetzt-auch-fuers-Smartphone-6544488.html
Kategorie[21]: Unsere Themen in der Presse Short-Link dieser Seite: a-fsa.de/d/3Dr
Link zu dieser Seite: https://www.aktion-freiheitstattangst.org/de/articles/8942-20241023-simplex-neuer-verschluesselter-messenger.html
Link im Tor-Netzwerk: http://a6pdp5vmmw4zm5tifrc3qo2pyz7mvnk4zzimpesnckvzinubzmioddad.onion/de/articles/8942-20241023-simplex-neuer-verschluesselter-messenger.html
Tags: #SimpleX #sichereMessenger #OpenSource #Passworte #Verschlüsselung #Bitmessage #Briar #Session #Signal #Wire #PGP #Zwangsdigitalisierung #Vortrag #Workshop #Datensicherheit #Überwachung #Verbraucherdatenschutz #Datensicherheit #Cyberwar #Hacking

2 Likes
danie10@squeet.me
Danie

SimpleX Chat (world’s most private?) now connects desktop app with mobile app via quantum resistant protocol

SimpleX desktop app screen showing a list of chats on the left side, with an open chat conversation open in a pane to the right.
It sounds like a simple thing to do, but SimpleX is not a cloud based hosting, nor does it even have a common profile that anyone can just follow or connect to. Every friend being connected with, receives a unique invite address. There is no e-mail address or phone number used to register, so no-one can find or connect with you unless you send them their own unique invite.

Hence this linking has been keenly awaited for a while now.

How does it work? “The way we designed this solution avoided any security compromises, and the end-to-end encryption remained as secure as it was – it uses double-ratchet algorithm, with perfect forward secrecy, post-compromise security and deniability. This solution is similar to WhatsApp and WeChat. But unlike these apps, no server is involved in the connection between mobile and desktop. The connection itself uses a new SimpleX Remote Control Protocol (XRCP) based on secure TLS 1.3 and additional quantum-resistant encryption inside TLS.”

The downside of this approach is that mobile device has to be connected to the same local network as desktop. But the upside is that the connection is secure, and you do not need to have a copy of all your data on desktop, which usually has lower security than mobile.

See https://simplex.chat/blog/20231125-simplex-chat-v5-4-link-mobile-desktop-quantum-resistant-better-groups.html
#Blog, #privacy, #SimpleX, #technology

6 Likes
danie10@squeet.me
Danie

SimpleX E2EE messenger for iOS and Android has no user IDs at all – It could be the most secure and private messenger ever

Bild/Foto
Other apps have user IDs: Signal, Matrix, Session, Briar, Jami, Cwtch, etc. SimpleX does not, not even random numbers. This radically improves your privacy.

When users have persistent identities, even if this is just a random number, like a Session ID, there is a risk that the provider or an attacker can observe how the users are connected and how many messages they send. They could then correlate this information with the existing public social networks, and determine some real identities. And, if you use Incognito mode, you will have a different display name for each contact, avoiding any shared data between them.

To deliver messages, instead of user IDs used by all other platforms, SimpleX uses temporary anonymous pairwise identifiers of message queues, separate for each of your connections — there are no long term identifiers.

You define which server(s) to use to receive the messages, your contacts — the servers you use to send the messages to them. Every conversation is likely to use two different servers.

This design prevents leaking any users’ metadata on the application level. To further improve privacy and protect your IP address, you can connect to messaging servers via Tor.

Only client devices store user profiles, contacts and groups; the messages are sent with 2-layer end-to-end encryption.

To connect to your friend, you can connect via their 1-time QR-code, in person or via a video link. You can also connect by sharing an invitation link. So, there is no user ID you share to groups or the public to connect with you. Every code is a one-time use code for just a single friend to connect. The channel through which you share the link does not have to be secure – it is enough that you can confirm who sent you the message and that your SimpleX connection is established.

See https://simplex.chat/
#Blog, #E2EE, #opensource, #privacy, #SimpleX, #technology

5 Likes
4 Likes
2 Comments
1 Shares
One person like that
3 Shares