|
|
| Line 1: |
Line 1: |
| − | See Also: [[Chat_Clients|Chat Clients]] | [[Cryptography]] | [[Encrypting_Your_Chat|Encrypting Your Chat]]
| + | #redirect [[encrypted chat clients]] |
| − | | + | |
| − | Inspired and credited to [http://www.infoanarchy.org/user/karellen karellen]'s [http://www.infoanarchy.org/story/2003/5/7/834/44426 recent '''infoAnarchy''' article].
| + | |
| − | | + | |
| − | Allow [[User|you]] to [[Text|text]] [[Chat|chat]] [[Online|online]] without any worries of [[Eavesdropping|eavesdropping]] by your [[ISP]], workplace, or other entity in an interconnected [[Network|network]]. Instant messaging tools and [[IRC]] connections are one of the least [[Security|secure]] [[Communication|communication]] tools available. While not yet perfect, the tools listed below make the process of chatting online more secure and anywhere from very anonymous to confirming your [[Identity|identity]] using [[Digital_Signatures|digital signatures]].
| + | |
| − | : ''Problem'': '''There's too many to chose from below - which one do I pick?'''
| + | |
| − | : ''Answer'': So far, there is no standard in IM security yet so the person you are talking to must [[Download|download]] and install the same client you have. See the "Tested" group below for suggestions.
| + | |
| − | | + | |
| − | | + | |
| − | If you have tried an IM client, please share your experience on the [[Talk:Encrypted_Chat_Clients|discussion page]]. <hr />
| + | |
| − | | + | |
| − | | + | |
| − | == Tested ==
| + | |
| − | | + | |
| − | # '''[[AIM]]''' - One of the most [[Popular|popular]] IM clients, it is also the most [[Attack|attacked]] by programs like [http://www.aimsniff.com AIMSniff]. As of [[AOL]]'s Windows IM client 5.2+, users have access to encrypted communications. If you don't wish to spend any money on a real security [[Certificate|certificate]], [http://www.aimencrypt.com AIMEncrypt.com] offers their own self-signed cert ([[SSL]]-based). However, the description on their site gives the impression that they know nothing about encryption, merely a distribution point for their certificate. | + | |
| − | # '''[[Filetopia]]''' [http://www.filetopia.com www.filetopia.com] - Available for [[Windows]] and [[WINE]] emulation - a peer-to-peer service that includes a fully encrypted interface to its growing network. Under gradual, continual developed, this service is ambitious, attempting to offer secure voice communication as well as secure file sharing service and secure chat. Probably the easiest encrypted chat client available. However, there is no way to confirm a person's identity online, as with some [[PGP]] and [[GPG]]-enabled clients.
| + | |
| − | | + | |
| − | :
| + | |
| − | : For Internet connections that block specific file-sharing ports, Filetopia allows the use of [[Random|random]] port selection.
| + | |
| − | | + | |
| − | | + | |
| − | # '''[[GAIM]]''' - the only recommended [[Cross-platform|cross-platform]] solution and one of the most popular SourceForge projects, allows an encryption plugin [http://www.cypherpunks.ca/otr/ OTR] (described below) available for many IM services or the [http://gaim-encryption.sourceforge.net/ gaim-encryption.sourceforge.net] exclusively for the [http://gaim.sourceforge.net/ GAIM] Instant Messaging tool. Allows multiple chat networks [[AIM]] (Oscar and TOC protocols), [[ICQ]], [[MSN_Messenger|MSN Messenger]], [[Yahoo_Messenger|Yahoo Messenger]], [[IRC]], [[Jabber]], [[Gadu-Gadu]], and [[Zephyr]] to be encrypted simultaneously.
| + | |
| − | | + | |
| − | :
| + | |
| − | : For GAIM encryption plugin, once installed, go into "Plugins" under "Preferences" and chose the checkbox next to Gaim-Encryption. The rest of the process is seamless. See the [http://gaim-encryption.sourceforge.net/ GAIM Encryption Plugin] for more information.
| + | |
| − | | + | |
| − | | + | |
| − | # '''[[WASTE]]''' - A [[Beta|beta]]-release software product and protocol that enables secure distributed communication for small (on the order of 10-50 nodes) trusted groups of users. Provides instant messaging, group chat, file browsing/searching, file transfer.
| + | |
| − | | + | |
| − | :
| + | |
| − | : '''Test Results''': this system works if one user has a traceable [[IP_address|IP address]]. For instance, users behind an [[ISP]]-controlled [[NAT]] may be unable to use this system. Requires a dynamic dns system like [http://www.no-ip.com http://www.no-ip.com] or [http://www.dyndns.org http://www.dyndns.org]
| + | |
| − | | + | |
| − | | + | |
| − | # '''[[Miranda_IM|Miranda IM]]''' [http://www.miranda-im.org/ www.miranda-im.org] - Available with many [http://miranda-im.org/download/index.php?action=display&id=38 security-related plugins] as well as GPG support for identity confirmation. Quote from web site:
| + | |
| − | | + | |
| − | :
| + | |
| − | : "[[Open-source]], [[GPL]] multi-protocol instant messenger client that uses very little memory and is extremely fast. Requires no installation and can be fit on a single floppy. Its powerful plugin system makes Miranda IM very flexible. Only the most basic features are built in, but there are currently more than 150 free plugins available for download that allows users to extend the functionality of Miranda IM."
| + | |
| − | | + | |
| − | :
| + | |
| − | : '''Test Results''': Testing shows that two plugins SecureIM and GPG do function but require some effort to enable. Non-technical users (most people) may flinch at the setup time involved. (As of Feb 2004)
| + | |
| − | | + | |
| − | | + | |
| − | # '''OTR''' (Off-the-Record Messaging) [http://www.cypherpunks.ca/otr/ www.cypherpunks.ca/otr] - Off-the-Record (OTR) Messaging allows you to have private conversations over instant messaging by providing: Encryption; No one else can read your instant messages. Authentication; You are assured the correspondent is who you think it is. Deniability; The messages you send do not have digital signatures that are checkable by a third party. Anyone can forge messages after a conversation to make them look like they came from you. However, during a conversation, your correspondent is assured the messages he sees are authentic and unmodified. Perfect forward secrecy; If you lose control of your private keys, no previous conversation is compromised.
| + | |
| − | | + | |
| − | :
| + | |
| − | # There is a [[GAIM]] plugin available from the [http://www.cypherpunks.ca/otr/ OTR homepage].
| + | |
| − | # There is a [[Miranda_IM|Miranda IM]] plugin [http://addons.miranda-im.org/details.php?action=viewfile&id=2644 available from the Miranda plugin repository], there's a [http://juffo.org/wiki/MirandaAndOtr guide on using it]
| + | |
| − | # There is a local proxy which encrypts AIM protcol conversations and functions on many platforms (linux, windows, MacOS)
| + | |
| − | # Note: this solution does not encrypt file transfers at this time.
| + | |
| − | | + | |
| − | | + | |
| − | | + | |
| − | == Untested: ==
| + | |
| − | | + | |
| − | | + | |
| − | === Multi-Platform ===
| + | |
| − | | + | |
| − | # '''[[SILC]] - Secure Internet Live Conferencing''' [http://silcnet.org silcnet.org] - A stable protocol, toolkit, server and client implementations using public key [[Cryptography|cryptography]] to confirm identity; [[Alice]] can also make sure she's chatting with Bob and not anyone else.
| + | |
| − | # '''Silky''' [http://silky.sf.net/ http://silky.sf.net/] - An [[OS]]-independent graphical SILC client. Uses [[GTK]].
| + | |
| − | # '''[[IIP|Invisible IRC Project]]''' [http://www.invisiblenet.net/iip www.invisiblenet.net/iip] - A well-developed project to create a secure connection using ''any'' IRC program.
| + | |
| − | # '''Jabber client with SSL''' [http://www.jabber.org Jabber.org] Clients with [[SSL]] capability that can also communicate with users of other [[IM|instant messaging]] systems ([[AIM]], [[ICQ]], [[Yahoo]], MSN, etc), though not securely. Only other [[Jabber]] clients will be able to connect securely. [[IRC]] is advertised, it largely doesn't work and some installation tests so far have been buggy.
| + | |
| − | | + | |
| − | : Supporting Clients:
| + | |
| − | | + | |
| − | #
| + | |
| − | # '''JAJC''' Just Another Jabber Client [http://jajc.ksn.ru/ jajc.ksn.ru] Very feature-rich, but [[Proprietary|proprietary]] and [[Windows]]-only. Allows [[PGP]] and [[SSL]] support
| + | |
| − | # Exodus [http://exodus.jabberstudio.org exodus.jabberstudio.org]
| + | |
| − | # MyJabber [http://www.myjabber.net/ www.myjabber.net]
| + | |
| − | # PSI [http://psi.affinix.com/ http://psi.affinix.com/]
| + | |
| − | # rhymbox [http://www.rhymbox.com/ rhymbox.com]
| + | |
| − | # Tipic.com [http://www.tipic.com/node.php?id=1386 http://www.tipic.com/] - [[SSL]]
| + | |
| − | | + | |
| − | # '''PGP for ICQ''' Downloadable with both International [http://www.pgp.com/products/ PGP 8.0 freeware]. May also be available in the [http://www.pgpi.org/ International PGP] version. Presumably, not free for corporate use.
| + | |
| − | # '''IMpasse''' - [http://www.im-passe.com/ www.im-passe.com] (commercial, for-cost tool) works for AIM, Yahoo, and MSN
| + | |
| − | # '''Project SCIM''' (Secure Cryptographic Instant Messaging) [http://www.projectscim.com projectscim.com] - Free, [[Java]]-based [[Public-Key_Cryptosystem|Public Key]] software for many operating systems (Mac, Windows, UNIX, etc). Allows for peer-to-peer communications which will not involve SCIM's central server.
| + | |
| − | # '''PSST''' [http://psst.sourceforge.net/ psst.sourceforge.net] - Unmaintained, encrypted, peer-to-peer voice and [[Text|text]] chat without central server. Works on Windows, Linux and DOS. The development of this project seems to be stopped but it is opensource so it is possible to take the sources to add some features.
| + | |
| − | | + | |
| − | | + | |
| − | === Windows-Only ===
| + | |
| − | | + | |
| − | # '''SIMP''' - [http://winfosec.com/simp.php winfosec.com/simp.php] a blessedly simple program that allows secure chat connections. Free for commercial or non-commercial use, no registration, no central server, no advertisements, and [[Open-source|open-source]] (although the license concerning future development is unclear). Requires:
| + | |
| − | | + | |
| − | :
| + | |
| − | : 1. Have a mutual password with the other person (not a [[Public-Key Cryptosystem|public key] system) and ...
| + | |
| − | | + | |
| − | :
| + | |
| − | : 2. You [http://www.whatismyipaddress.com/ know your IP address] and the address of your recipient. That's it!
| + | |
| − | | + | |
| − | | + | |
| − | # '''SIMP-pro/lite''' - [http://www.secway.fr/us/products/all.php www.secway.fr]
| + | |
| − | | + | |
| − | :
| + | |
| − | :
| + | |
| − | # Simp Pro secures your MSN, Yahoo!, ICQ, AOL instant messenger, Jabber and Google Talk clients.
| + | |
| − | | + | |
| − | | + | |
| − | | + | |
| − | | + | |
| − | For corporate environments and more demanding users, SimpPro encrypts and authenticates messages as well as file transfers (MSN Messenger only), making it the most comprehensive instant messenger security add-on. It is also easily administered using GPOs.
| + | |
| − | :
| + | |
| − | :
| + | |
| − | # With Simp Lite, free version of the Simp product line, you can secure one of the following services:
| + | |
| − | | + | |
| − | | + | |
| − | | + | |
| − | | + | |
| − | MSN Messenger, Yahoo! Messenger, ICQ/AOL Instant Messenger (AIM), Jabber/Google Talk. Fully compatible with Simp Pro and Simp Server.
| + | |
| − | # '''Crypto Heaven''' [http://www.cryptoheaven.com/ www.cryptoheaven.com] - (commercial, for-cost tool) - some very nice features for businesses or organizations that need a secure community solution including medical establishments with its HIPAA compliance.
| + | |
| − | # '''PGP-ICQ''' [http://samopal.org/soft/pgpicq/download.php samopal.org/soft/pgpicq homepage] - a different program, [[Open-source|open-source]], that also looks good.
| + | |
| − | # '''Encrypted Messenger''' - [http://www.secureshuttle.com/ www.secureshuttle.com] - an apparently free service that provides a secure messaging tool and many other features including secure file transfer, secure voice messaging, IRC-style "rooms," or meeting places for groups.
| + | |
| − | # '''[http://www.mollensoft.com/product6.htm Cipher Chat]''' - free software that requires both [[Client|client]] and [[Server|server]] installation. Not [[Open-source|open-source]], apparently unmaintained and should not be considered highly secure.
| + | |
| − | | + | |
| − | | + | |
| − | === Mac [[OS_X|OS X]] only ===
| + | |
| − | | + | |
| − | # '''[[Fire]]''' [http://fire.sf.net/ http://fire.sf.net/] - [[Open_source|open source]] [[multi-protocol]] application supporting [[GPG]] encryption.
| + | |
| − | | + | |
| − | | + | |
| − | === Non-Windows ([[Nix|*NIX]]) ===
| + | |
| − | | + | |
| − | # '''Yeemp''' [http://deekoo.net/technocracy/yeemp/ homepage] - uses [[GPG]] over [[SSL]] and is largely [[Decentralized|decentralized]].
| + | |
| − | # '''GAIL''' [http://www.gale.org/docs www.gale.org/docs] - [[Open-source|open-source]], [[GPL]] IM tool in [[Beta|beta]] stage that has its own [http://wiki.ofb.net/?GaleFaq '''wiki'''].
| + | |
| − | # '''KVIRC''' [http://www.kvirc.net/ www.kvirc.net] - [[KDE]] [[IRC]] client in the [[Beta|beta]] stage with [[SSL]] support, including DCC file-transfer and certificates. Check the [http://www.kvirc.net/?id=faq FAQ] for information on the SSL features. May require [[IPv6]] compliance.
| + | |
| − | # '''LICQ''' [http://www.licq.org Licq.org] has [[SSL]] support and a [http://richard.hirners.com/licq-gpg/ GPG] [[Plugin|plugin]] available for [[Authentication|authentication]]. Available for any [[POSIX]]-compliant system.
| + | |
| − | # '''Irssi''' [http://www.irssi.org Irssi.org] an IRC client with [[SSL]] support. Also there are various [http://scripts.irssi.org scripts] for using encrypted IRC between queries and channels.
| + | |
| − | # '''XChat''' [http://www.xchat.org Xchat.org] includes [[SSL]] support.
| + | |
| − | <hr />
| + | |
| − | | + | |
| − | Related:
| + | |
| − | # [http://www.epic.org Epic.org's] - [http://www.epic.org/privacy/tools.html Tools for Online Privacy]
| + | |
| − | | + | |
| − | {{infoanarchy2|Encrypted_Chat_Clients}}
| + | |
