8 Free Encrypted, Secure, And Privacy-Friendly Messengers

 Skype used to be a very good communication software, it is the most popular free voice-over IP and instant messaging service globally. Gradually. Skype uses 256 bit AES encryption to encrypt communication between users, but skype doesn’t offer end-to-end encryption.

With End-To-End Encryption not only the communication channel is secure, but the messages stored on the server can only be read by the people in the conversation. Meaning to say, only the sender and receiver have access to the data, there is no master key for the FBI, CIA or Police.

There are two sides to the arguments, drug lords can simply discard both phones and all the messages are gone forever. On the other hand, it makes it harder for the government to silence those that disagree with their policies, such as dictators with bad intentions. I am all for encryption, but the idea of not having access to important information by terrorist organizations is a big drawback.

↓ 01 – Discord | Free | Encryption in Transit

All-in-one voice and text chat for gamers that’s free, secure, and works on both your desktop and phone. Stop paying for TeamSpeak servers and hassling with Skype. Simplify your life. Discord is always completely free to use with no gotchas. This means you can make as many servers as you want with no slot limitations.

• Encrypted server to client communication keeps your IP address safe. Stop getting ganked because you’re logged into Skype. Their resilient Erlang backend running on the cloud has built in DDoS protection with automatic server failover.
• Designed for use while gaming, Discord has minimal impact on your CPU. Your game’s performance won’t be affected in the slightest. Seriously. It’s time to ditch CPU hogs like Skype.

↓ 02 – Telegram | Free | End-to-End Encryption

Telegram is a cloud-based mobile and desktop messaging service with a focus on speed and security, it’s super-fast, simple and free. You can use Telegram on all your devices at the same time — your messages sync seamlessly across any number of your phones, tablets or computers.

With Telegram, you can send messages, photos, videos and files of any type (doc, zip, mp3, etc), as well as create groups for up to 10,000 people or channels for broadcasting to unlimited audiences. You can write to your phone contacts and find people by their usernames. As a result, Telegram is like SMS and email combined — and can take care of all your personal or business messaging needs.

• Telegram messages are heavily encrypted and can self-destruct.
• Telegram is free forever. No ads. No subscription fees.
• Coordinate groups of up to 10000 members.

03 – Google Hangout | Free | Encryption in Transit

Hangouts is a messaging app that lets you send and receive messages, photos and more, and even start free video and voice calls – one to one or with a group! “Hangouts” are places used to facilitate group video chat (with a maximum of 10 people participating in a single Hangout at any point in time).

Within the 10 person limit participants may use voice only phones to dial in to the hangout instead of the desktop or mobile video chat feature. On a desktop or laptop environment hangouts also contain the integration of group chat, Google document sharing, and synchronous viewing of YouTube videos. Works great on Microsoft’s Windows 10 and Apple’s macOS.

↓ 04 – Slack | Free / Paid | Encryption in Transit

Whatever work means for you, Slack brings all the pieces and people you need together so you can actually get things done. It’s a digital workspace that powers your organization — all the pieces and the people — so you can get things done. A Workspace Owner creates a Slack workspace, recruits Admins to help manage and organize the team, and they together invite and onboard members.

• Channels – Organize your team conversations in open channels. Make a channel for a project, a topic, a team, or anything—everyone has a transparent view of all that’s going on. For sensitive information, create private channels and invite a few team members
• Direct Messages – Send messages directly to another person or to a small group of people for more focused conversations.
• Calls – Take a conversation from typing to face-to-face by starting a Slack voice or video call in any Channel or Direct Message. From there, you’re one click away from sharing your screen, so everyone can follow along.

↓ 05 – Mattermost | Open Source (Self Host) / Paid | Encryption in Transit

Mattermost Team Edition is Open Source, but you will have to self host it on your own server. The enterprise version comes with a small fee. It is basically a Slack alternative. As an alternative to proprietary SaaS messaging, Mattermost brings all your team communication into one place, making it searchable and accessible anywhere. It’s written in Golang and React and runs as a production-ready Linux binary under an MIT license with either MySQL or Postgres.

• Messaging that works: Effective workplace messaging with search and integrations, plus web, mobile and PC apps and much more.
• Open source and private cloud-ready: Modern communication behind your firewall. MIT license with hundreds of contributors.
• Slack alternative: Enjoy a superset of Slack’s popular features, including Slack-compatible webhooks plus import of Slack channels, users, and even theme colors.

↓ 06 – Element [ Riot.im ] | Open Source | End-to-End Encryption

Element [ Formerly known as Riot.im ] is a simple and elegant collaboration environment that gathers your different conversations and app integration into one single app. Built around group chat rooms, Element lets you share messages, images, videos and files – interact with your tools and access all your different communities under one roof. One single identity and place for all your teams: no need to switch accounts, work and chat with people from different organisations in public or private rooms: from professional projects to school trips, Element will become the center of all your discussions!

• Communication – Communicate with your team and out of network colleagues more efficiently: use dedicated rooms which persist information from their creation and forever.
• Share Files – Send, receive and view files while inline with the conversation.
• Voice & Video Conferencing – One touch voice and video conferencing.
• Security – All files and data transferred over Element can be encrypted end-to-end (currently in beta), meaning no one can eavesdrop on conversations, including the service provider.

（Element

Element (formerly known as Vector and Riot) is a Matrix web client built using the Matrix React SDK.

Supported Environments

Element has several tiers of support for different environments:

• Supported
  • Definition: Issues actively triaged, regressions block the release
  • Last 2 major versions of Chrome, Firefox, and Edge on desktop OSes
  • Last 2 versions of Safari
  • Latest release of official Element Desktop app on desktop OSes
  • Desktop OSes means macOS, Windows, and Linux versions for desktop devices that are actively supported by the OS vendor and receive security updates
• Experimental
  • Definition: Issues accepted, regressions do not block the release
  • Element as an installed PWA via current stable version of Chrome
  • Mobile web for current stable version of Chrome, Firefox, and Safari on Android, iOS, and iPadOS
• Not supported
  • Definition: Issues only affecting unsupported environments are closed
  • Everything else

For accessing Element on an Android or iOS device, we currently recommend the native apps element-android and element-ios.

Getting Started

The easiest way to test Element is to just use the hosted copy at https://app.element.io. The develop branch is continuously deployed to https://develop.element.io for those who like living dangerously.

To host your own copy of Element, the quickest bet is to use a pre-built released version of Element:

1. Download the latest version from https://github.com/vector-im/element-web/releases
2. Untar the tarball on your web server
3. Move (or symlink) the element-x.x.x directory to an appropriate name
4. Configure the correct caching headers in your webserver (see below)
5. Configure the app by copying config.sample.json to config.json and modifying it. See the configuration docs for details.
6. Enter the URL into your browser and log into Element!

Releases are signed using gpg and the OpenPGP standard, and can be checked against the public key located at https://packages.riot.im/element-release-key.asc.

Note that for the security of your chats will need to serve Element over HTTPS. Major browsers also do not allow you to use VoIP/video chats over HTTP, as WebRTC is only usable over HTTPS. There are some exceptions like when using localhost, which is considered a secure context and thus allowed.

Important Security Notes

Separate domains

We do not recommend running Element from the same domain name as your Matrix homeserver. The reason is the risk of XSS (cross-site-scripting) vulnerabilities that could occur if someone caused Element to load and render malicious user generated content from a Matrix API which then had trusted access to Element (or other apps) due to sharing the same domain.

We have put some coarse mitigations into place to try to protect against this situation, but it's still not good practice to do it in the first place. See vector-im/element-web#1977 for more details.

Configuration best practices

Unless you have special requirements, you will want to add the following to your web server configuration when hosting Element Web:

• The X-Frame-Options: SAMEORIGIN header, to prevent Element Web from being framed and protect from clickjacking.
• The frame-ancestors 'self' directive to your Content-Security-Policy header, as the modern replacement for X-Frame-Options (though both should be included since not all browsers support it yet, see this).
• The X-Content-Type-Options: nosniff header, to disable MIME sniffing.
• The X-XSS-Protection: 1; mode=block; header, for basic XSS protection in legacy browsers.

If you are using nginx, this would look something like the following:

add_header X-Frame-Options SAMEORIGIN;
add_header X-Content-Type-Options nosniff;
add_header X-XSS-Protection "1; mode=block";
add_header Content-Security-Policy "frame-ancestors 'self'";

For Apache, the configuration looks like:

Header set X-Frame-Options SAMEORIGIN
Header set X-Content-Type-Options nosniff
Header set X-XSS-Protection "1; mode=block"
Header set Content-Security-Policy "frame-ancestors 'self'"

Note: In case you are already setting a Content-Security-Policy header elsewhere, you should modify it to include the frame-ancestors directive instead of adding that last line.

Building From Source

Element is a modular webapp built with modern ES6 and uses a Node.js build system. Ensure you have the latest LTS version of Node.js installed.

Using yarn instead of npm is recommended. Please see the Yarn install guide if you do not have it already.

1. Install or update node.js so that your node is at least the current recommended LTS.
2. Install yarn if not present already.
3. Clone the repo: git clone https://github.com/vector-im/element-web.git.
4. Switch to the element-web directory: cd element-web.
5. Install the prerequisites: yarn install.
   • If you're using the develop branch, then it is recommended to set up a proper development environment (see Setting up a dev environment below). Alternatively, you can use https://develop.element.io - the continuous integration release of the develop branch.
6. Configure the app by copying config.sample.json to config.json and modifying it. See the configuration docs for details.
7. yarn dist to build a tarball to deploy. Untaring this file will give a version-specific directory containing all the files that need to go on your web server.

Note that yarn dist is not supported on Windows, so Windows users can run yarn build, which will build all the necessary files into the webapp directory. The version of Element will not appear in Settings without using the dist script. You can then mount the webapp directory on your web server to actually serve up the app, which is entirely static content.

Running as a Desktop app

Element can also be run as a desktop app, wrapped in Electron. You can download a pre-built version from https://element.io/get-started or, if you prefer, build it yourself.

To build it yourself, follow the instructions at https://github.com/vector-im/element-desktop.

Many thanks to @aviraldg for the initial work on the Electron integration.

Other options for running as a desktop app:

• @asdf:matrix.org points out that you can use nativefier and it just works(tm)

yarn global add nativefier
nativefier https://app.element.io/

Development

Before attempting to develop on Element you must read the developer guide for matrix-react-sdk, which also defines the design, architecture and style for Element too.

Read the Choosing an issue page for some guidance about where to start. Before starting work on a feature, it's best to ensure your plan aligns well with our vision for Element. Please chat with the team in #element-dev:matrix.org before you start so we can ensure it's something we'd be willing to merge.

You should also familiarise yourself with the "Here be Dragons" guide to the tame & not-so-tame dragons (gotchas) which exist in the codebase.

The idea of Element is to be a relatively lightweight "skin" of customisations on top of the underlying matrix-react-sdk. matrix-react-sdk provides both the higher and lower level React components useful for building Matrix communication apps using React.

Please note that Element is intended to run correctly without access to the public internet. So please don't depend on resources (JS libs, CSS, images, fonts) hosted by external CDNs or servers but instead please package all dependencies into Element itself.

CSS hot-reload is available as an opt-in development feature. You can enable it by defining a CSS_HOT_RELOAD environment variable, in a .env file in the root of the repository. See .env.example for documentation and an example.

Setting up a dev environment

Much of the functionality in Element is actually in the matrix-react-sdk and matrix-js-sdk modules. It is possible to set these up in a way that makes it easy to track the develop branches in git and to make local changes without having to manually rebuild each time.

First clone and build matrix-js-sdk:

git clone https://github.com/matrix-org/matrix-js-sdk.git
pushd matrix-js-sdk
yarn link
yarn install
popd

Then similarly with matrix-react-sdk:

git clone https://github.com/matrix-org/matrix-react-sdk.git
pushd matrix-react-sdk
yarn link
yarn link matrix-js-sdk
yarn install
popd

Clone the repo and switch to the element-web directory:

git clone https://github.com/vector-im/element-web.git
cd element-web

Configure the app by copying config.sample.json to config.json and modifying it. See the configuration docs for details.

Finally, build and start Element itself:

yarn link matrix-js-sdk
yarn link matrix-react-sdk
yarn install
yarn start

Alternatively, you can skip the above commands and only run the command below. The only difference is that both 'matrix-react-sdk and 'matrix-js-sdk' will be cloned inside the root project folder.

./scripts/tchap/install-yarn-linked-repositories.sh
yarn install
yarn start

Wait a few seconds for the initial build to finish; you should see something like:

[element-js] <s> [webpack.Progress] 100%
[element-js]
[element-js] ℹ ｢wdm｣:    1840 modules
[element-js] ℹ ｢wdm｣: Compiled successfully.

Remember, the command will not terminate since it runs the web server and rebuilds source files when they change. This development server also disables caching, so do NOT use it in production.

Open http://127.0.0.1:8080/ in your browser to see your newly built Element.

Note: The build script uses inotify by default on Linux to monitor directories for changes. If the inotify limits are too low your build will fail silently or with Error: EMFILE: too many open files. To avoid these issues, we recommend a watch limit of at least 128M and instance limit around 512.

You may be interested in issues #15750 and #15774 for further details.

To set a new inotify watch and instance limit, execute:

sudo sysctl fs.inotify.max_user_watches=131072
sudo sysctl fs.inotify.max_user_instances=512
sudo sysctl -p

If you wish, you can make the new limits permanent, by executing:

echo fs.inotify.max_user_watches=131072 | sudo tee -a /etc/sysctl.conf
echo fs.inotify.max_user_instances=512 | sudo tee -a /etc/sysctl.conf
sudo sysctl -p

When you make changes to matrix-react-sdk or matrix-js-sdk they should be automatically picked up by webpack and built.

If any of these steps error with, file table overflow, you are probably on a mac which has a very low limit on max open files. Run ulimit -Sn 1024 and try again. You'll need to do this in each new terminal you open before building Element.

Running the tests

There are a number of application-level tests in the tests directory; these are designed to run with Jest and JSDOM. To run them

yarn test

End-to-End tests

See matrix-react-sdk for how to run the end-to-end tests. ）

07 – Rocket.Chat | Open Source (Self Host) / Paid | Encryption in Transit

Rocket.Chat is a Web Chat Server, developed in JavaScript, using the Meteor full stack framework. It is a great solution for communities and companies wanting to privately host their own chat service or for developers looking forward to building and evolving their own chat platforms.

• Video Conference – Chat with your colleagues and friends face-to-face over audio and video.
• Helpdesk Chat – Have your website visitors contact you in real-time and increase conversions.
• File Sharing – Drag-and-drop files or select them from your computer or mobile device.
• Voice Messages – Record and transmit voice messages to a channel, group or private conversation.

↓ 08 – Wire Personal | Free / Paid | End-to-End Encryption

Wire Personal is a secure, privacy-friendly messenger for personal use. It combines useful and fun features, audited security, and a beautiful, distinct user interface. It does not require a phone number to register and chat.

• End-to-end encrypted chats, calls, and files
• Crystal clear voice and video calling
• File and screen sharing
• Timed messages and chats
• Synced across your phone, desktop and tablet

Conclusion

The clear winner is none other than Riot with MatterMost as the runner up. Slack is very beautifully crafted, not to mention it comes with more features, however the lack of end-to-end encryption is a big concern. Slack is a nice start when open and secure is not one of your top priorities.

---------------------------------------------------------------------------------------------------

5 Free 256-bit Encrypted Voice Calls Apps With End-to-End Encryption

For those in the dark, FinFisher, also known as FinSpy, is surveillance software widely used by many government all over the world for spying on their citizens. The NSA and CIA probably use other software with similar capabilities. In general, it is very easy to capture voice data transmitted over 2G, 3G or 4G network, for the most part they are encrypted, but not sufficiently enough to be considered as safe.

The up and coming 4G LTE is much better, The 4G LTE successor is the SNOW 3G stream cipher and the UEA2 confidentiality and UIA2 integrity algorithms. The problem arises on how these data are transmitted (central server) and where are they stored? This is where End-to-end encryption and Encrypted in transit makes a huge difference. Works great on Android 8.0 Oreo / Android 9.0 [ Popsicle, Pancakes or Pie ] smartphones such as Samsung Galaxy, Huawei Mate, Oppo, Vivo, XiaoMi, Nokia, and also Apple’s iOS iPhone.

“End-to-end Encryption” vs “Encrypted in Transit”

There are two types of encryption, Apple’s iMessage and Facetime are both End-to-end encryption (User to User), this means the data are stored at the endpoints (i.e. by users, not by servers) and Apple does not keep the data nor can they decrypt the data with a master key. Google’s Hangout on the other hand uses Encrypted in transit (User to Server to User) method, this means all data goes thru their central server and Google keeps a copy of the data, which is secure but with enough computing power, the data can be decrypted.

Only 5 apps made it to the list for military grade unhackable End-to-end encryption, data encrypted end-to-end is the only case where you can trust the service to protect your data. These apps are God sent for those in the opposition party in a country but can be badly abused by drug dealers, kidnappers, terrorists and more. Without further ado, here are 5 of the best anti-CIA, anti-NSA, and anti-FBI voice apps ( VoIP ) with military grade AES 256-bit end-to-end encryption.

↓ 01 – Silent Phone | iOS | Android

Silent Phone provides encrypted voice, video, and messaging brought to you by the world leaders in privacy, Silent Circle. Calls and messages between Silent Phone members are encrypted end-to-end protecting your business from criminals and competitors alike. Features:

• True Privacy. Trusted by businesses and governments around the world.
• Simple “zero–touch” deployment across your organization
• Secure conference calling with HD call clarity
• Burn functionality protects messaging with auto self-destruct
• Voice memos offer a modern replacement for traditional, unprotected voicemail
• Securely send pdf, docx, mov, mp4, png and jpg files.
• Silent World allows communication with non-members

02 – Signal | iOS | Android （这款很安全）

Privacy is possible, Signal ( Open Whisper System) makes it easy. Using Signal, you can communicate instantly while avoiding SMS fees, create groups so that you can chat in real time with all your friends at once, and share media all with complete privacy. The server never has access to any of your communication and never stores any of your data.

• Be Yourself – Signal uses your existing phone number and address book. There are no separate logins, usernames, passwords, or PINs to manage or lose.
• Group Chat – Signal allows you to create encrypted groups so you can have private conversations with all your friends at once. Not only are the messages encrypted, but the Signal server never has access to any group metadata such as the membership list, group title, or group icon.

↓ 03 – BBM | iOS | Android

Blackberry BBM lets you chat and share with a speed, control and privacy you can’t get on other instant messenger apps. It’s the closest thing to being there in person. And with great new features, getting your message across is faster and easier than ever. Note: some features are not available for all devices.

• Invite additional BBM contacts to join a chat to make things more lively! Join at any time and it ends when everyone leaves – up to 250 BBM contacts in one chat!
• BBM Groups – Set up a permanent BBM Group with your close friends or co-workers – not only can you chat, but also share pictures in a group Album, assign tasks to group members and create calendar events for group members. Permanent BBM Groups can have up to 50 members.
• Broadcast messages – Get the word out in a flash by sending a broadcast message to multiple BBM contacts at one time.

04 – Apple Facetime | iOS | macOS （据说这款的漏洞很多）

According to Apple, your iMessages and FaceTime calls are your business, not ours. Your communications are protected by end-to-end encryption across all your devices when you use iMessage and FaceTime, and with iOS and watchOS, your iMessages are also encrypted on your device in such a way that they can’t be accessed without your passcode.

Apple has no way to decrypt iMessage and FaceTime data when it’s in transit between devices. So unlike other companies’ messaging services, Apple doesn’t scan your communications, and we wouldn’t be able to comply with a wiretap order even if we wanted to. While we do back up iMessage and SMS messages for your convenience using iCloud Backup, you can turn it off whenever you want. And we don’t store FaceTime calls on any servers.

↓ 05 – WhatsApp | Android | iOS | macOS | Windows （被facebook收购，而facebook是亲中的。）

Privacy and security is in our DNA, which is why we have end-to-end encryption in the latest versions of our app. When end-to-end encrypted, your messages, photos, videos, voice messages, documents, and calls are secured from falling into the wrong hands. End-to-end encryption is available when you and the people you message are on the latest versions of WhatsApp.

WhatsApp’s end-to-end encryption ensures only you and the person you’re communicating with can read what is sent, and nobody in between, not even WhatsApp. Your messages are secured with a lock, and only the recipient and you have the special key needed to unlock and read your message. For added protection, every message you send has a unique lock and key. All of this happens automatically: no need to turn on settings or set up special secret chats to secure your messages.

---------------

点对点加密通讯软件哪个好？2022年5款最安全的加密即时通信软件推荐

现在，智能手机已经成为我们生活中不可或缺的一部分，我们无时无刻不在使用它们发送信息、

语音呼叫、视频呼叫、图像、文档和地理定位等，是我们工作和生活的左膀右臂！因此，一款

最安全的即时通讯软件对我们非常重要，这能有效避免隐私信息被窃取，因为很多营销公司都会

跟踪、阅读并收集你的信息，精准推送广告。
此外，传统的即时通讯软件还会将用户聊天记录副本保存在公司的服务器上，然后对你的信息

进行各种分析和收集，以进行商业变现。
在 iOS 和安卓系统手机上，有非常多通讯软件 Apps 可供选择。我们如何选择一款既能保护

自己的信息安全，有功能较为齐全的社交软件呢？ 

1. Signal

Signal 是一款由 Open Whisper Systems 开发的免费开源的即时通讯工具，目标是确保其用户之间的通讯安全和绝对隐私。Signal 程序使用端对端加密技术，保护你所发出去的每一条信息，不管是一对一会话，还是群发消息，所有内容都是绝对安全的，甚至连Signal的服务器也无法访问你的组群信息。正如你所期待的那样，Signal 允许你发送各类文件，包括图片、视频、语音，全部都受到与文字信息相同的协议保护。一切都是安全可靠的！Signal 是一款能提供绝对隐私和安全的即时通讯客户端，相比同类应用程序，它又多增加了一层安全保护。WhatsApp、LINE、Telegram的用户也许更多，但安全性一定比不上这款程序。

如果你愿意，还能把 Signal 取代默认的 SMS 信息应用程序，不过基本的 SMS 文本不会加密，必须双方（你和对方）都有安装 Signal，加密功能才会运作，要不然一样只是普通的文本。Signal 也提供其他实用功能，如：视频通话、信息传送一段时间后自动消失，对于不想要保留信息的人来说，这功能非常好用。

Signal官网：https://signal.org/

Signal 是一款由 Open Whisper Systems 开发的免费开源的即时通讯工具，目标是确保其用户之间的通讯安全和绝对隐私。Signal 程序使用端对端加密技术，保护你所发出去的每一条信息，不管是一对一会话，还是群发消息，所有内容都是绝对安全的，甚至连Signal的服务器也无法访问你的组群信息。正如你所期待的那样，Signal 允许你发送各类文件，包括图片、视频、语音，全部都受到与文字信息相同的协议保护。一切都是安全可靠的！Signal 是一款能提供绝对隐私和安全的即时通讯客户端，相比同类应用程序，它又多增加了一层安全保护。WhatsApp、LINE、Telegram的用户也许更多，但安全性一定比不上这款程序。

如果你愿意，还能把 Signal 取代默认的 SMS 信息应用程序，不过基本的 SMS 文本不会加密，必须双方（你和对方）都有安装 Signal，加密功能才会运作，要不然一样只是普通的文本。Signal 也提供其他实用功能，如：视频通话、信息传送一段时间后自动消失，对于不想要保留信息的人来说，这功能非常好用。

Signal官网：https://signal.org/

Signal下载：App Store｜Google Play

2. telegram

Telegram是一款基于云的移动和桌面消息的即时通讯程序，它和 Viber、WhatsApp、LINE 等程序类似，能在你和所有联系人之间架起一座简单、便利的沟通桥梁，更专注于安全和速度。Telegram与其他通讯工具最大的区别就在于，它能够更好保障用户的隐私安全。Telegram虽然不是开源的通讯软件，但它的安全程度几乎跟 Signal 一样，界面也非常简洁、舒服，还提供聊天备份、信息自动消失等功能，你还能进行群聊、视频通话、传送帖、音频备忘等等。Telegram有个小缺点，那就是默认状态下并没有启用端到端加密，因此，如果你想要拥有最安全的信息传送过程，记得先激活 “私密模式（Secret Mode）”，其他类型的传输就会自动加密。

Telegram官网：https://telegram.org/

Telegram下载：App Store｜Google Play

3、WhatsApp

WhatsApp 是智能手机上使用的即时通讯软件App，无需付费即可下载使用。WhatsApp 使用您手机的网络连接（4G/3G/2G/EDGE 或 Wi-Fi），让您与朋友或家人通话和收发消息，您可由使用短信切换到 WhatsApp 来收发消息、通话、交换照片、视频、文档、和语音消息。我相信很多人都听说过 WhatsApp，它是目前市场上最好的即时通讯软件之一，也有提供端到端加密的信息传送模式，而且还使用超强的加密技术。

虽然 WhatsApp 所有聊天就已经进行加密，而且无法关闭此功能。但是它是 Facebook（脸书）旗下产品，意味着你可能正分享数据给全球最大的社交平台。虽然 Facebook 无法读取你的信息（端到端加密可阻止），但它可以出于营销目的，记录你其他数据，如：手机位置等，所以WhatsApp 不够安全，最好可以配合其他加密代理软件。

WhatsApp官网：https://www.whatsapp.com/

WhatsApp 下载页面：App Store｜Google Play

4、Silence

Silence是一个帮助保护你与朋友聊天消息的隐私安全可靠的即时通讯软件，它会直接处理 SMS 和 MMS，而不是通过网路的聊天协议，无需 Wi-Fi 网路，但相对也有一些缺点，如：群聊支持有限，也不提供视频通话功能。其实，Silence是从 Signal 衍生出来的通讯软件，使用相同的开源和极高安全加密技术，以确保代码不会被任何政府机构破解，进而获得你的对话历史记录。为了确保所有内容都获得安全保护，Silence 也支持密码锁定功能。

Silence功能特点：
*简便：Silence像其它的短信应用一样，无需注册登录，并且你的朋友也不必安装其它服务。
*可靠：Silence发送加密信息，无需流量和WiFi等网络连接。
*私密：Silence使用Axolotl的高级加密协议，为每条信息提供隐私安全。
*开源：Silence是自由并开源的，可以供任何人检查源代码来确认是否具有隐藏后门和漏洞。

Silence官网：https://silence.im/

Silence下载：App Store｜Google Play

5、Threema

Treema 也是一款安全性很高的免费开源的即时通讯软件，完全匿名使用，它能确保你的数据不会被黑客、公司或政府监控，不用担心你的身份暴露。Threema是由一家瑞士公司开发的，其服务器全部在瑞士境内，使用最高强度加密端到端的语音和视频通话，具备一款最先进的即时通讯工具应该能提供的所有功能。Threema无广告，无追踪，不靠广告或收集用户数据来获得营收。我们还可以通过 Threema Web，在电脑端使用Threema。

Threema不仅是一款加密的隐私通讯工具，而且是有超多功能的全能型产品。Threema还提供有以下功能：

• 输入文字并发送语音消息
• 进行语音和视频通话
• 分享视频、图片和位置
• 发送任何类型的文件（pdf、动图gif、mp3、doc、zip等）
• 在电脑端使用Threema Web聊天
• 创建群组
• 使用投票功能开展投票
• 浅色和深色模式可供选择
• 使用独特的同意/不同意功能，快速无声得进行回复
• 扫描联系人的二维码识别其身份信息
• 把Threema作为匿名的即时通讯工具
• 同步您的联系人（可选）

跟其他即时通信软件 App 不同是，Threema是收费软件，但仅 2.99 美金，同时兼顾安全和匿名性，这还真不贵。

Threema官网：https://threema.ch/en

Threema下载：App Store｜Google Play

6、Jami (好像不是聊天工具）

Jami，原 GNU Ring,SFLphone，是由加拿大公司 Savoir-faire Linux 开发，后由该公司及社区成员共同维护的一款即时通信软件。Jami将自己定位为Skype的免费替代品。目前，在中国大陆地区是可以直接打开官网并下载的，但在中国大陆版的 Apple Store 中是没有该App的，必须使用非中国区 Apple ID 登录应用商店后下载。我们注册Jami，无需输入邮箱或电话号码，非常简单快捷。

Jami官网：https://jami.net/

Jami下载：https://jami.net/download/

( 去中心化的即时聊天工具Ring

Ring是GNU 项目下的电话和即时聊天自由软件应用，遵循GPLv3开源协议, 采用分布式哈希表创建一个去中心化的独立通讯网络，基于OpenDHT通信协议，不依赖于任何中心服务器，Ring能在所有连接的系统中分发目录、验证和加密。采取可靠安全的RSA/AES/DTLS/SRTP 加密协议来传输文字、语音和视频聊天。支持多平台包括：Windows, Linux, Mac OS 以及Android。

https://jami.net/ring-becomes-jami/)

（ Ring, officially a GNU package

Since the month of October, Ring is officially a GNU package, following its integration into the GNU project.

Distributed under the GPLv3+ license, Ring is a free software which enables communication in multiple ways between its users. It is a phone, a conference station, a platform for exchanges and media sharing, and a link for the Internet of Things, all in a world where freedom and security go hand in hand. Running on a distributed network and encrypted from end to end, Ring tries to provide to Ring users’ a high level of privacy and confidentiality.

In the mid 2000s, Savoir-faire Linux has started a project called SFL Phone. The project then evolved to produce another: Ring. This shift is marked by various milestones such as the transition from SIP server to the OpenDHT distributed network in 2014, permitting decentralized communication, peer to peer mode. Becoming a GNU package is a new venture for the project and the free software movement.
Thanks to external contributions, which are the cornerstone of the Ring project, the Savoir-faire Linux team has over several months developed a beta 2, which fits perfectly with the philosophy of free software. Beyond the code, Ring has established links between the development team and the local partner universities such as the Université du Québec à Montréal (UQÀM), Polytechnique Montréal and the École de Technologie Supérieure (ÉTS ) which is home to the Maison du Logiciel Libre (ML2).

We want to thank all our contributors, all of whose assistance was greatly appreciated.

https://ring.cx/

Know more about Ring

• Download Ring App
• Contribute to the Ring Project
• Help to translate the project via the project Transifex page

from https://blog.savoirfairelinux.com/en-ca/2016/ring-official-gnu-package/）

7、Olvid

Olvid是一家来自于法国的即时通讯工具，创建于2018年11月。Olvid主要是服务于企业客户，它支持 Android 和 iPhone/iPad 平台。Olvid不需要SIM卡，只要设备有网络就可以注册使用。虽然Olvid虽然是一款加密通讯工具，但是其代码是不开源的，至于其真正的隐私安全性是未知的。

Olvid官网：https://olvid.io/en/

说起加密通信软件的隐私保护，自美国中情局斯诺登曝光美国菱镜计划后，隐私安全问题越来越受到大家的重视。虽然在天朝谈隐私安全是一句笑话，但还是想给大家推荐这些主打隐私保护、安全通信的点对点加密通讯软件。此外，还有Viber、Kakao Talk、Dust、Wickr、CoverMe、Pryvate、SureSpot、Wire等端到端加密通讯软件，也许有一天，你真的想试试它们。

-------------------------

Signal - 一款跨平台的安全加密的IM通信工具 | 无内容审查 | 可阅后即焚

如果你对自己的隐私比较重视，那么你一定听说过这款 Telegram 久负盛名的 IM 通信工具，它以“免费开源、安全加密、无内容审查”而广受好评。最近 Telegram 在使用者条款中强调，在与“毒品交易、恐怖活动”等有关的案件上，它仍然会与政府合作，即“如果 Telegram 收到法庭命令，确认您是一个恐怖活动嫌疑人，我们可能向有关当局揭露您的IP位址以及电话号码。”于是，很多用户担心这是否意味着以后可能会以这样的名义开放其他内容的审查呢？于是，很多原来使用 Telegram 的用户转到了 Signal 这款拥有更强加密技术的 IM 通信工具。

Signal 官网：https://signal.org/

Signal 项目源代码：https://github.com/signalapp

1、Signal 团队背景

Signal Messenger LLC 是一家独立的非营利机构，不受控于任何企业或者政府，并承诺不会被收购，此前由媒体自由基金会（Freedom of the Press Foundation）及用户捐赠形式的资金来源维护服务器等。

媒体自由基金会，又名新闻自由基金会，总部位于美国加州，于 2012 年年底成立，是电子前线基金会（Electronic Frontier Foundation）旗下之一的基金会，主要职责是帮助独立记者出版新闻或者书籍。

Signal 是 Signal Messenger LLC 旗下最知名的开源软件，Signal 的早期团队不超过 7 人，在 2018 年 2 月 21 日，Signal 官方宣布成立同名基金会（Signal Foundation），基金会最早得到了 WhatsApp 联合创始人 Brian Acton 的 5000 万美元资金援助，由此扩大团队，但 Signal 创始人 Moxie Marlinspike 坚持初心，不将盈利作为团队的首要目标。

2、Signal 是什么？

Signal 是由美国非营利性组织 Open Whisper Systems 开发的一款免费开源的 IM 通信工具，最初因受到美国CIA前中情局特工斯诺登(Edward Snowdon)在 Twitter 表示自己每天都在使用 Signal 而闻名。据《华尔街日报》的文章报道，在美国政界，Signal 的使用度也很高。据说，斯诺登曝光美国棱晶门计划后，在躲避美国政府追捕过程中一直使用 Signal 与国际记者保持联系（Cryptocat 也这么宣传自己，这款 IM 工具现在已经停止运营，看来还是 Signal 比较可靠）。但目前来看，Singal 更成功，因为大部分退出 Telegram 的用户选择了 Signal 这款 IM 工具。与 Telegram 相比，Signal 不像 Telegram 需要另外开启“秘密对话”才会开启端对端加密功能，而是每条信息都使用端对端加密，且设置定时“阅后即焚”的功能也非常方便。

Signal 跟 Telegram 一样，需要使用手机号码注册，当然也支持 Google Voice 注册，支持语音和视频通话，但 Signal 没有自带的表情符号，也拥有支持 Windows/Mac/Linux/Android/iOS 全平台的客户端。Signal 自带出墙功能，但是不够稳定，还是建议使用专业的代理工具。

3、Signal 的优势特点

（1）点对点加密：Signal 是预设端对端加密，其团队开发的加密演算法（Curve25519、X3DH、AES-256、MAC-SHA256）也被广泛认可（包含 WhatsApp 和 Facebook Messenger 都采用其加密演算法），并且在认证组（Electronic Frontier Foundation、ProPublica、Princeton Information Technology Center）下通过七项安全系列评级。Telegram 需要开启“私密对话(Secret Chats)”才会使用端对端加密，而 WhatsApp 直接使用由 Signal 开源的端对端加密算法，这足以证明 Signal 加密算法非常牛。

（2）加密方式：Signal 及 WhatsApp 同样使用随机的加密方式，Telegram 则使用开发者自行建立的网络密钥进行加密。也就是说，只要得到开发者的网络密钥，政府或任何机构，甚至个人都可以解密通信信息。

（3）服务器加密：Signal 使用开源的协议作为加密技术，这意味着一般安全机构甚至个人都可以审查Signal源代码中有无任何不当的行为（例如窃听通信讯息）；而 Telegram 的服务器加密同样还是使用开发者的网络密钥；至于 WhatsApp 的服务器为 Facebook 所拥有，安全与否就看你是否信任 Facebook 公司了。

（4）背后资金：Signal 靠开源社区进行维护，背后为非盈利而仅依靠用户捐赠的众多开发者；Telegram 背后为 Nikolai 及 Pavel Durov，他们是有俄罗斯的 Faceboook 之称的通信软件 VK 的创始人；WhatsApp 是 Facebook 旗下的一款 IM 通信工具。

（5）隐私保护：Signal 手机端提供“屏幕安全”和“锁定消息”的功能，也就是你可以禁止截图任何Signal会话，并设置在手机通知栏看不到任何消息的具体内容。

（6）用户信息：Signal 提供阅后即焚，或定时删除聊天信息的功能，对比 Telegram 及 WhatsApp，储存的 metadata（描述资讯）及用户资讯。Telegram 背后的VK 及WhatsApp 背后的Facebook 更加是以收集用户资讯而闻名的。

4、Signal 的劣势缺点

（1）由于 Signal 也必须使用手机号码注册，而且使用Signal聊天之前，您必须同意与聊天的任何人共享您的电话号码，即使是跟陌生人聊天也必须这样，非好友无法跟对方发送信息。如果你是实名制的手机号码，那么就很容易被通过的好友查到本人。好友聊天仅能通过搜索对方手机号码；

（2）Signal 在用户体验上没有 Telegram 和 WhatsApp 友好易用，还有很大的提升空间，比如消息/聊天会话无法置顶。

（3）跟 Telegram 对待“贩毒和爆恐”的态度一样，在 Signal 的使用条款里，Information we may share 部分说明到，Signal 会应当地政府请求，分享用户的数据，这些数据分享案例也会公开在博客上。在 2016 年，Signal 官方收到来自美国弗吉尼亚东区联邦地区法院的传票请求，要求提供相关用户的数据资料，对此，Signal 官方同意了这一申请，但仅向该法院提供了相关用户的注册时间和最后使用时间，并在博客公示了这个事件。

除了在功能上，Signal 比 Telegram 及 WhatsApp 更看重私隐外，最值得用户注意的是， Telegram 及 WhatsApp 背后金主 VK 及 Facebook，本身是以收集用户资讯作广告用途作为主要收入来源，虽然两者都指出有点对点加密，但讯息安全究竟有多大保障，是值得认真思考的一环。另外根据SecureMessagingApps的资料显示，WhatsApp 的母公司Facebook，是有在政府要求下交出用户资讯的前科，亦是大家考虑保安及私隐时不可忽视的一环。

5、Signal 电子取证

Signal 使用军事级加密技术，相对于 Telegram、Skype 和 WhatsApp 而言，Signal 的电子取证难度更大。目前，没人任何个人和组织通过 MITM 攻击来截取用户信息（有后门除外），针对 iOS 版本 Signal 的取证也仅支持到 iPhone X，Android 系统则支持全系列。用户如果没有设置阅后即焚或者删除聊天记录，电子取证软件（如 Elcomsoft、Belkasoft）依然可以通过读取本地文件获取用户资料进而解密。

6、Signal 客户端下载

（1）Android安卓客户端

中国大陆地区的安卓应用商店没有上架 Signal，但是我们可在 Google Play Store 下载到该软件，注册时需要科学上网（注册后使用过程中无需出墙），最新版本不支持 Android Shortcuts 功能。

（2）iOS苹果客户端

Signal for iOS 可在任意区（包含中国大陆地区）的 App Store 下载到（Signal TestFlight 版本点击这里加入），iOS 11 及其以上的用户默认使用 CallKit 功能（即用户可通过电话功能接管 Signal 的来电），用户可使用中国大陆号码进行注册，但是注册过程需要科学上网（注册后使用过程中无需借助梯子软件出墙），软件界面在 iOS 13 及其以上的用户可随系统主题变换，支持 3D Touch 功能。

（3）Signal for Windows 客户端

点击下载 Signal for Windows 客户端

（4）Signal for Mac 客户端

点击下载 Signal for Mac 客户端

（5）Signal for Linux 客户端

在 Linux 上安装Signal，需要执行以下命令：

curl -s https://updates.signal.org/desktop/apt/keys.asc | sudo apt-key add -
echo "deb [arch=amd64] https://updates.signal.org/desktop/apt xenial main" | sudo tee -a /etc/apt/sources.list.d/signal-xenial.list
sudo apt update && sudo apt install signal-desktop

7、注册 Signal 账户

由于我们本来就是出于隐私安全目的才选择 Signal，所以我建议不要使用实名手机号码，你可以选择使用 Google Voice 或 叮咚号码 等虚拟号码进行注册，有多余手机的也可以购买香港或缅甸等国外手机卡注册。当然，有一点必须声明一下：我们保护安全隐私并不是为了做坏事，所以请不要做任何有违反当地的法律法规和公众道德的行为。

注意事项：注册 Signal 账号的过程非常简单，用户仅需要一个手机号码（可以是实体或者虚拟号码）用来接受验证码，之后 Signal 软件会要求用户设置一串 PIN 码，该 PIN 码将作为用户日后更换新设备时的安全验证码。此外，Signal 官方为防止用户忘记 PIN 码，所以会每隔一段时间提醒用户输入 PIN 码（可以不输入或者取消该提醒功能），针对 PIN 码还可用于「注册锁定」，该功能用来防止有不怀好意的人在另一台设备上强行绑定受害者的手机号码。

8、Signal 功能测试

（1）收发图片/附件 etc 功能

目前，Signal 在中国大陆的使用相对于 Telegram/WhatsApp 等，还是比较有优势的，因为 Signal 无论 Android 还是 iOS 版客户端都自带出墙功能，相对其它无内容审查的安全加密 IM 软件，小白用户也可轻松使用，用户可以正常收发图片等附件。

（2）通话质量

在通话时长达 1 个多小时 的语音测试过程中，中间仅发生两次短暂（不超过3 秒）的爆音（语音不清晰），通话质量非常好。我认为 Signal 的语音通话不比微信差，但我不清楚爆音是本地网络问题，还是 Signal 的问题。

在中国大陆地区使用 Telegram、WhatsApp 语音通话必须通过代理并开启 UDP 转发才能正常使用，Signal 在不使用代理的情况下也可正常通话。当然，部分地区的网络不太一样，具体视当地的实际情况而定。

（3）发送一次性图片功能

经测试，用户使用 Signal 发送图片时，在左下角有个圆圈按钮，它是设置图片属性的按钮，可选择「一次性」或者「永久性」，对于「一次性」图片，用户仅能看一次，也就是阅后即焚，iOS & Android 均无法截图。但一次性图片可以被录屏，暂不明确 Android 用户使用 Xposed 模块能否破解截图限制（我推测很有可能被破解）。

（4）Signal 群组

创建 Signal 群组与其它 IM 软件操作方法基本一样，都需要至少有一个联系人。但是不同的是，新成员加入群组必须由群组的成员邀请进去。

9、Signal 跟其它加密IM通信工具对比

通过以上无内容审查的安全加密 IM 通信工具 Signal、Telegram、WhatsApp 和 Wickr Me 对比，你可以发现 Signal 在隐私保护和安全加密方面真是非常强大。

10、Signal 常见问题答疑

（1）注册 Signal 账号后，能否更换手机号码？

答：目前无法更换，注册时请慎重。

（2）Signal 账号可以备份聊天记录吗？

答：可以的，官方提供聊天记录备份到本地的功能。

----------------------------------------------------------

相关帖子：

https://briteming.blogspot.com/2016/12/signal-google.html 

----------------------------------------------------------------------