technical specifications
doggie dogchat!
this is the /most/ secure chat application i could possibly build. it uses true peer-to-peer connections and RSA-2048 encryption. it's all self-contained, so you can inspect the code and signal calls yourself.
there's a lot going on in the world right now and i think it's very important to have extreme OPSEC options avalible to the general public. signal is cool but i didn't make signal and it's too complicated to trust explicity.
other encrypted chat apps are great and amazing for most cases, but i've always had a little bit of distrust for them. mostly because i can't understand the large codebases. this is made to be simple enough for anyone to understand.
i wanted this to be a single, static HTML page, that you can understand and deploy yourself. there's nothing too complicated here, just a good security framework and basic calls.
some things to note:
private keys are stored as javascript variables that go away when you close your page. messages only come through if the session is active and still open. no messages are stored on ANY server, however the signal framework, webRTC, will likely collect IP addresses. if the NSA grabs your messages along the way, you know they're encrypted at least.
this also means that your messages essentially only have one chance to reach you and are gone when the window closes. plan accordingly!
for max security, make sure that those public keys are secret forever. make sure you know who you're talking to. connect with TOR unless you're willing to let anyone know who you are and who you are talking to. they won't know /what/ you're saying, but they'll know who you said it to.