Skip to content
/ ChatSafe Public

A secure chat room service based on Node.js, Socket.io and AngularJS with AES encryption

chat.capsop.com

License

MIT license
31 stars 10 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

DavidTimms/ChatSafe

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

53 Commits
.openshift
.openshift
 
 
node_modules
node_modules
 
 
static
static
 
 
LICENSE.txt
LICENSE.txt
 
 
README.markdown
README.markdown
 
 
deplist.txt
deplist.txt
 
 
gitignore.gitignore
gitignore.gitignore
 
 
npm_global_module_list
npm_global_module_list
 
 
package.json
package.json
 
 
server.js
server.js
 
 

Repository files navigation

#ChatSafe

A secure chat room service based on Node.js, Socket.io and AngularJS with AES encryption

##How to use ChatSafe

The following steps will allow you to use ChatSafe securely:

  1. Use private/incognito browsing mode.

  2. Create a chat using the box on the homepage.

  3. Send the address of the newly created chat to anyone you want to chat with. This address contains the key to the chat, so keep it safe. I recommend using privnote to send the address.

  4. Once everyone has joined the chat, click the 'lock chat' button on the left of the chat page.

  5. When you finish your conversation, click 'unlock chat' and when prompted click 'yes' to clear all messages from the chat.

##How it works

When you create a chat, a random key is generated and stored in the hash part of the URL. That's the part which your browser can see but is not sent over the internet to the server. This key used to encrypt your messages in your browser before they are sent to the server. Once the message reaches the other members of the chat, their browsers will get the key from the URL you sent them to join the chat, and use it to decrypt the message back to its original form.

All encryption is done using the Gibberish AES library, so it follows the 256 bit AES specification. Because all encryption is done in the browser, not even the ChatSafe server can read messages, as it does not have the encryption key.

In case somebody does manage to get your chat URL, with the key to decrypt the messages, the lock feature can be used to stop any new members from joining the chat, so they cannot access the messages. The chat is deleted from the server once all members have left.

##Why was ChatSafe created

People have a right to communicate in private without being tracked, recorded or monitored. Chatsafe provides a simple, fast, browser-based instant messaging service for people to do this.

You shouldn't have to trust any external service to protect your communication data. With ChatSafe, even if somebody has access to our servers they cannot read your messages.

##Who Created ChatSafe

ChatSafe was created by David Timms, a student and web developer from Bristol, UK. If you have any questions or feedback about the site, send me a message on my website.

##Can I trust you?

You don't have to. ChatSafe is open source software, meaning anybody can view the source code, so you can check that it does what I say it does.

##SSL connection

ChatSafe now uses an SSL connection for an extra layer of security. If you wish to host your own version, put the SSL keys in the keys folder: ssl.key for private, ssl.crt for the certificate and for CA ca.unified.pem.

About

A secure chat room service based on Node.js, Socket.io and AngularJS with AES encryption

chat.capsop.com

Resources

Readme

License

MIT license
Activity

Stars

31 stars

Watchers

7 watching

Forks

10 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages