1 Star2 Stars3 Stars4 Stars5 Stars (No Ratings Yet)
Loading...Loading...
By ihenry March 5, 2014 2 Comments

Cryptocat, the encrypted chatting service has just released their iPhone app in the App Store. The developer has indicated in a blog post that the Electronic Frontier Foundation (EFF) helped in resolving the issues with Apple. It isn’t clear why it was rejected but according to the developers, Apple specifically had a problem with group chat encryption.

 

Cryptocat has became quite popular in wake of the NSA controversy, where the agency was found to intercept and snoop on communications. Cryptocat’s end-to-end encryption by design doesn’t allow for anyone in the middle to read your messages.

 

According to the developer, Cryptocat depends on native iOS APIs instead of web cryptography which has been used by other Cryptocat clients. The iPhone app uses the OTR protocol for private conversations, and multiparty protocol for group conversations. Cryptocat is also available for Mac, and also offers browser extensions for Chrome, Firefox, Safari and Opera.

 

Here’s how it works:

 

Cryptocat is different from other encrypted chat tools in that it doesn’t require usernames or accounts. Users enter a conversation using a one-time nickname. There are no buddy lists or account activity or account history to link back to the user. This way, Cryptocat offers a unique ephemerality that makes setting up encrypted conversations immediate and without any lasting history that can be traced back to users.

 

” I was really excited to see this app hit the app store, but unfortunately the iOS version does not appear to have been written with privacy / security in mind. The app leaves behind a treasure trove of forensic artifacts that can be lifted from your device if it is ever stolen, hacked, or seized by law enforcement. The most notable of which is that all your past typing is logged into Apple’s keyboard cache, so that previous conversations, including word counts, can be extracted from the device. Cryptocat could have prevented this by turning off auto-correct or writing their own. The app also intentionally stores the user’s private key, room name, nick, buddies, and other identifying information in the configuration file. This can all be used to identify you, past conference rooms, and other information that could expose you. And sadly, if I could figure this out in just a couple of minutes, I’m sure bad guys / feds / etc. are figuring it out too. This can be recovered forensically from most commercial forensic tools on devices of any model.”

by Jonathan Zdziarski

 

So if you’re looking to chat with privacy, download Cryptocat from the App Store using this iTunes link.

About

Comments:
  1. I used to use phone tracking software Hellospy. It’s really very good. Thanks Hellospy that I can monitor my child and better management. Moreover, the HelloSPY offers monitoring software HelloSPY, the first software to locate and spy-call (Auto answer) a cell phone for free. I really like it.

  2. It’s a headache when you do not know what My girlfriend’s is doing and where. I search on google something that can help me. And I chose Hellospy. You know, it was great to effectively bring Hellospy software. Hellospy have applications that I’m interested. For example, tracking messages, calls and identify important than my girlfriend’s place so that I can be assured. thank you, thank Hellospy.

Leave a Reply

You must be logged in to post a comment.

If you want to track a cell phone, you can contact us now!!!

Email: contact@hellospy.com