A secure and anonymous messaging service based on a ledger protocol. Clients connect by exchanging addresses (Diffie-Hellman key exchange) and broadcast their ciphered messages publicly in a central ledger. Every client that synchronizes with the ledger is downloading each message but will be only able to decrypt it if he posesses the private key associated to the receiver's address. By the proposed protocol there are no sender nor receiver IPs to which encrpyted packages can be traced back. Users do not have to raise any concerns towards the service host, even if it is corrupt.
Read the full article.
Check out the deployed service at noledger.cc
noledger.io is the only messaging service which
- ๐คฒ๐ฝ is completely free, liberal and avoids any KYC
- ๐ stores messages on a time-limited public ledger but respects integrity, authenticity and absolute anonimity through distributional entropy
- ๐ต๐ฝโโ๏ธ prohibits the tracing of connections, routes or meta data by design and with mathematical/informational certainty
- ๐ can always be trusted if the client-side protocol is obeyed, even if the service is corrupt
The table below is a collection of publicly known security incidents (headlines and articles) with common E2E messaging services.
| Function | Description | Status | Version | Proposal |
|---|---|---|---|---|
| Secure File Relay | A secure way to exchange files using the messenger. | Pending | - | - |
| Hidden Service | A secure way to exchange files using the messenger. | Pending | - | - |
| Adaptive Grouping | Automatic mechanism to protect clients from high traffic. | Stable | v-1.2.0 | 1.2.0 |
| Long-term Accounts | A function which enables clients to download/save their whole account encrypted in a file and can be reconstructed on any device. | Stable | v-1.1.0 | |
| Specific Check String | A second, contact specific check string for authenticity proof. | Stable | v-1.0.0 | - |
| Random Padding | Randomly generated nonce that is appended to the plain text. This feature randomizes every cipher output to prevent classification of identical plain text samples that were encrypted with the same key. | Stable | v-1.0.0 | 1.0.0 |
| Base Protocol | A secure and anonymous ledger-based messaging protocol. | Stable | v-1.0.0 | 1.0.0 |
| Release | Patch Notes |
|---|---|
| v-1.2.0 | - new console logger for traffic monitoring - Added adaptive grouping mechanism server and client-side to protect clients from high traffic - Improved server-side cleaner perormance through mapping entry IDs to group IDs - Added new traffic module for group determination - Added new "screen lock" mechanism which triggers on inactivity and when leaving the app - Removed release script and other legacies |
| v-1.1.0 | - Fixed generate AES key issue - Receivers were not decrypting correctly after AES key exchange - Fully implemented account saving and loading for long-term usage - Improved UI interactivity - Added release script in release/ directory - Added version badge to README.md |
Protecting the user IP goes beyond the capabilities of the node-side protocol and is probably the only action which lies in the user's hands and spans across all web services. It is thus highly recommended to hide the IP via VPN or TOR window (Brave Browser for example). Attackers still cannot break the encryption nor reveal the E2E route of fetched packages but may map them in ciphered form to the origin IP. SOCKS5 implementation for a hidden service is already in plan.
Run the setup script in the root directory
bash setup.shopen the certificate path and generate a new certificate (optional)
cd ./cert/self_signed
bash create.sh # follow instructions in terminalor store a valid certificate and key as ssl.crt and ssl.key.
The default port will be 443
sudo node serverotherwise a port can be provided via argument
sudo node server 3000 # start the node on port 3000For the default port open https://localhost in the browser. Access the web client by pressing the button on the landing page.
React
Typescript
Django
Laravel
Facebook
Microsoft
Google
Alibaba
D3
Tencent