Always Secure Messaging
From Guardian Project Wiki
(Difference between revisions)
(→Apps that are NOT Awesome) |
|||
| Line 15: | Line 15: | ||
*Crypto.cat (Web) [https://crypto.cat https://crypto.cat] | *Crypto.cat (Web) [https://crypto.cat https://crypto.cat] | ||
*Guardian Project: Gibberbot for Android [https://guardianproject.info/apps/gibber https://guardianproject.info/apps/gibber] | *Guardian Project: Gibberbot for Android [https://guardianproject.info/apps/gibber https://guardianproject.info/apps/gibber] | ||
| + | |||
| + | === Project Links === | ||
| + | |||
| + | *Secure Mobile Design Wiki [https://guardianproject.mybalsamiq.com/projects/securemobilemessaging/grid https://guardianproject.mybalsamiq.com/projects/securemobilemessaging/grid] | ||
| + | *Mobile Partnership Announcement [https://guardianproject.info/2012/06/08/a-partnership-for-open-secure-mobile-messaging-between-ios-and-android/ https://guardianproject.info/2012/06/08/a-partnership-for-open-secure-mobile-messaging-between-ios-and-android/] | ||
| + | |||
| + | === User Expectations === | ||
| + | |||
| + | *Verifiable end-to-end encryption | ||
| + | *Ability to control local storage, logging | ||
| + | *Message queuing and delivery when out of coverage, or in spotty coverage | ||
| + | *Always on / Start on boot | ||
| + | *Ability to manage buddies, contacts, groups, identities | ||
| + | *Group Messaging | ||
| + | |||
| + | === Existing Standards === | ||
| + | |||
| + | *XMPP [http://xmpp.org/ http://xmpp.org/] | ||
| + | *XEP-0035: SSL/TLS Integration [http://xmpp.org/extensions/xep-0035.html http://xmpp.org/extensions/xep-0035.html] | ||
| + | *Off-the-Record Messaging: [http://www.cypherpunks.ca/otr/ http://www.cypherpunks.ca/otr/] | ||
| + | *XEP-0198: Stream Management [http://xmpp.org/extensions/xep-0198.html http://xmpp.org/extensions/xep-0198.html] | ||
| + | *XEP-0184: Message Delivery Receipts [http://xmpp.org/extensions/xep-0184.html http://xmpp.org/extensions/xep-0184.html] | ||
| + | *MultiParty OTR (mpOTR) [https://github.com/kaepora/cryptocat/wiki/mpOTR-Specification https://github.com/kaepora/cryptocat/wiki/mpOTR-Specification] | ||
=== Additional Projects We Hope Will Join Us === | === Additional Projects We Hope Will Join Us === | ||
| Line 33: | Line 56: | ||
*Apple iMessage (Somewhat Secure, but Closed / Single Platform) | *Apple iMessage (Somewhat Secure, but Closed / Single Platform) | ||
*WhatsApp! (Horribly Insecure, Closed Protocol) | *WhatsApp! (Horribly Insecure, Closed Protocol) | ||
| - | |||
| - | |||
| - | |||
| - | |||
| - | |||
| - | |||
| - | |||
| - | |||
| - | |||
| - | |||
| - | |||
| - | |||
| - | |||
| - | |||
| - | |||
| - | |||
| - | |||
| - | |||
| - | |||
| - | |||
| - | |||
| - | |||
| - | |||
Revision as of 00:33, 13 July 2012
Always Secure Messaging ("AweSoMe") is a collaborative effort to build interoperable, open-source, secure messaging applications, that work from mobile to mobile, as well as mobile to web. In particular, the goal is to create an extremely usable and high quality experience, that simultaneously supports one-to-one and one-to-many (group) end-to-end secure messaging communications.
Overall, we want to promote messaging tools and the projects behind them taht are truly awesome, and willing to collaborate in an awesome manner. Additionally, we seek to aid users who care about, or absolutely require, secure and private messaging, by providing with a simple labeling of "AWESOME" or "NOT AWESOME".
The basic principles below guide our efforts:
- We believe in Security by Default, Privacy by Design
- We believe in protocols, not products.
- We believe in partnerships, not proprietary fiefdoms.
- We believe in building a community of collaborators, not a cacophony of criticism and unnecessary competition.
- We believe in practical solutions to perilous problems.
Contents |
Founding Members & Apps
- ChatSecure for iOS https://chatsecure.org/
- Crypto.cat (Web) https://crypto.cat
- Guardian Project: Gibberbot for Android https://guardianproject.info/apps/gibber
Project Links
- Secure Mobile Design Wiki https://guardianproject.mybalsamiq.com/projects/securemobilemessaging/grid
- Mobile Partnership Announcement https://guardianproject.info/2012/06/08/a-partnership-for-open-secure-mobile-messaging-between-ios-and-android/
User Expectations
- Verifiable end-to-end encryption
- Ability to control local storage, logging
- Message queuing and delivery when out of coverage, or in spotty coverage
- Always on / Start on boot
- Ability to manage buddies, contacts, groups, identities
- Group Messaging
Existing Standards
- XMPP http://xmpp.org/
- XEP-0035: SSL/TLS Integration http://xmpp.org/extensions/xep-0035.html
- Off-the-Record Messaging: http://www.cypherpunks.ca/otr/
- XEP-0198: Stream Management http://xmpp.org/extensions/xep-0198.html
- XEP-0184: Message Delivery Receipts http://xmpp.org/extensions/xep-0184.html
- MultiParty OTR (mpOTR) https://github.com/kaepora/cryptocat/wiki/mpOTR-Specification
Additional Projects We Hope Will Join Us
- Pidgin (Windows / Linux IM)
- Adium (Mac OS)
- Silent Circle (multi-app secure mobile service)
- TextSecure (Android SMS OTR)
Apps that are NOT Awesome
From Almost Awesome to DEFINITELY NOT Awesome here is a list of apps to be wary of if security and privacy are important to you
- Google Talk App (Better Security, Open Protocols, but not end-to-end secure)
- Google+ Messenger (Somewhat Secure, Multi-platform, but closed)
- Blackberry Messenger aka "BBM" (Secure, but Closed / Single Platform)
- Facebook Messenger (Insecure, Closed, Poor Policies)
- Apple iMessage (Somewhat Secure, but Closed / Single Platform)
- WhatsApp! (Horribly Insecure, Closed Protocol)
