Privacy in Messaging

Unlike popular apps like WhatsApp and Telegram, which have been criticized for their data collection policies and ties to governments or corporations, tools like Briar, SimpleXchat, and Signal prioritize privacy and security. Below, we explore how these apps work and what sets them apart from traditional platforms.

1. Briar

Briar is an app that uses a decentralized network to send and receive messages, making it ideal for users seeking absolute privacy, especially in areas with network restrictions or censorship. The app doesn’t rely on centralized servers, eliminating the risk of third parties collecting communication data.

If internet access is limited, Briar allows synchronization via Bluetooth, Wi-Fi, or memory cards, ensuring that information continues to flow even in critical moments. And if internet access is available, Briar can operate through the Tor network, protecting both users and their interactions from surveillance.

Source: https://briarproject.org/

Advantages:

  • Protection against metadata surveillance: Briar uses the Tor network to prevent spies from identifying who is communicating with whom. Additionally, each user’s contact list is stored encrypted and only on their device.

  • Content security: All communication between devices is end-to-end encrypted, ensuring that the content cannot be intercepted or altered.

  • Content filtering: End-to-end encryption prevents keyword filtering, and due to its decentralized design, there are no servers to block.

  • Protection against takedown orders: Forum users keep a copy of their content, making it impossible to delete a post from a single point.

  • Resistance to denial-of-service attacks: There is no central server that can be attacked, meaning each subscriber has access to the content, even if they are disconnected.

  • Operation during internet outages: Briar can operate via Bluetooth or Wi-Fi, ensuring the flow of information during connection failures.

An app designed to withstand advanced threats

Briar has been created with resistance to censorship and surveillance in mind, even against adversaries with high capabilities. It is prepared to operate under the following scenarios:

  • Extensive monitoring of long-distance communication channels (such as the internet or telephone networks).

  • The adversary’s ability to block, delay, modify, or replay traffic on these channels.

  • Limited surveillance of short-distance communication channels (such as Bluetooth or Wi-Fi).

  • The adversary may install devices running Briar but cannot break the encryption standards used by the app.

Disadvantages:

  • Android-only: Briar is currently available only on Android devices, limiting accessibility for users of other operating systems like iOS.

Use cases:

  • Activists in censored countries
  • People in remote or low-connectivity areas

Platform: Android
Open-source: Yes
URL: briarproject.org

2. SimpleXchat

One of the main questions users have raised about SimpleX is: if the app doesn’t use user identifiers, how does it know where to deliver the messages?

The key lies in the use of temporary and anonymous identifiers for message queues, unique to each of your connections. Unlike other platforms that rely on permanent identifiers, SimpleX does not use any long-term identifiers, ensuring that your privacy remains intact.

Innovative design to protect your privacy

To receive messages, the user decides which server or servers to use, while for sending messages to their contacts, they also define the corresponding servers. It is likely that each conversation will use two different servers, further complicating the tracking of activities.

This design not only ensures the confidentiality of the content but also prevents the leakage of metadata at the application level, a critical point for those seeking maximum privacy in their communication. Additionally, to further enhance security and protect the user’s IP address, it is possible to connect to the messaging servers via Tor, guaranteeing an additional layer of anonymity.

Encryption and control of your data

In SimpleX, only the client devices store user profiles, contacts, and groups, minimizing the risk of exposure of personal information. Messages are sent with end-to-end encryption in two layers, ensuring that the content is not accessible or intercepted during transmission.

With these features, SimpleX offers secure and private messaging without compromising the user’s identity or location. Ideal for those seeking a solution without risks of espionage or data leaks.

Advantages:

NO USER IDENTIFIER (UserID): When users have persistent identities, even if they are random numbers, like a session ID, there is a risk that the provider or an attacker could observe how users connect and how many messages they send. This information could be correlated with public social networks and reveal real identities.

Even in highly private apps that use Tor v3 services, if the same profile is used to communicate with two different contacts, it’s possible to demonstrate that they are talking to the same person.

SimpleX protects against these risks by not using user identifiers. Additionally, if you use incognito mode, each contact will have a different display name, preventing data from being shared between them.

SimpleX stores all user data on client devices in an encrypted and portable database format, allowing it to be transferred to another device.

End-to-end encrypted messages are temporarily held on SimpleX’s relay servers until they are received, then permanently deleted.

You can use SimpleX with your own servers or with the servers provided by SimpleX.

Source: https://simplex.chat/

Advantages:

  • No user ID: Without persistent user IDs, there’s no risk of correlating communication data to real identities.
  • End-to-end encryption: Messages are encrypted and stored temporarily on servers, then deleted after delivery.
  • Customizable servers: Users can choose to use their own servers or SimpleX’s servers.

Use cases:

  • Users who value complete anonymity
  • Those looking to avoid personal identifiers like phone numbers

Platform: Android, Linux (Desktop version available)
Open-source: Yes
URL: simplex.chat

3. Signal

Signal is widely regarded as one of the most secure messaging apps due to its end-to-end encryption protocol and strong commitment to user privacy. Developed by the Signal Foundation, a nonprofit organization, Signal is known for its transparency and robust security features.

Advantages:

  • End-to-end encryption: Signal uses the Signal protocol, considered the most secure available for messaging apps.
  • No metadata: Unlike other apps, Signal doesn’t collect metadata, ensuring complete privacy for your communications.
  • Open-source: Anyone can audit Signal’s code, ensuring transparency and eliminating backdoors.
  • Cross-platform: Signal is available for Android, iOS, and has desktop versions for syncing across multiple devices.

Disadvantages:

  • Phone number required: Signal relies on a phone number for registration, which may link the user to their identity.
  • Requires an internet connection: Unlike Briar, Signal needs an internet connection to send messages.

Use cases:

  • Security professionals and journalists
  • Activists and human rights defenders in regions with high surveillance and censorship

Platform: Android, iOS, Windows, macOS, Linux
Open-source: Yes
URL: signal.org

Conclusion:

The choice between Briar, SimpleXchat, and Signal depends on your specific needs regarding privacy, security, and ease of use. If you prefer full decentralization and the ability to operate without an internet connection or centralized servers, Briar is your best option. If anonymity and avoiding phone number use are priorities, SimpleXchat is an excellent alternative. For those who need a robust, cross-platform solution with high security, Signal remains a trusted and reliable choice.