Articles

This content is in the process of being styled since being imported from a previous system, and may lack some formatting detail or imagery.

Secure Instant Messenger from the ground up

  • Open Source
  • Security

CSpace provides a platform for secure, decentralized, user-to-user communication over the internet.

Users are simply identified by their 2048-bit RSA keys. Peer-to-peer means you send messages directly to the recipient, not via a central server. Messages are encrypted at your end and decrypted at their end - they are never handled in plain text anywhere else. Compare this with traditional instant messenger clients that use a central server to relay messages.

I wonder if this is any more secure than using PSI's ability to use PGP keys for encrypting messages. Although it sends messages via a central server, the message is still encrypted with your public key, sent via the central server (still encrypted) and delivered to the recipient, who then decrypts it with their public key. Unless PSI covertly encrypts the message with an additional public key so someone else can decrypt it, I don't see how this is any less secure than CSpace's peer-to-peer model.

CSpace via Digg

Comments

Hmmm - cool thoughts... I got to say however that getting PGP running on Psi isn't the easiest task (I actually gave up trying a while ago).

Really? Was it getting gnupg working, or using a gpg key in psi? I found that you just select a private key from your gnupg list (just tell psi where gnupg is) and it just works...

Comments for this post are currently disabled.

Subscribe to my Newsletter

* indicates a required field

I don't send many updates. I don't like to spam. Let's face it - I've not posted many new articles for a while (although I do plan on changing that). If you subscribe to new articles, I'll send no more than two emails a week. As for workshop and conference information, that'll be as and when I have details. It's not likely to be more than an email a week.

Topics