From 3d1d7eb44a5cd9f2a7efd0f67ea169c5ea2c0ee4 Mon Sep 17 00:00:00 2001 From: epoberezkin Date: Mon, 14 Oct 2024 12:28:30 +0000 Subject: [PATCH] deploy: b7131e16f2ef9a8f3bddfdcfa041959b91bdc7a4 --- ar/index.html | 5 +- bg/index.html | 7 +- ...-chat-v4.2-security-audit-new-website.html | 2 +- ...y-review-better-calls-user-experience.html | 110 +++++++++++++++- blog/images/20241014-calls.png | Bin 0 -> 292892 bytes blog/images/20241014-forward.png | Bin 0 -> 595757 bytes blog/images/20241014-messages.png | Bin 0 -> 246543 bytes blog/images/20241014-profiles1.png | Bin 0 -> 373107 bytes blog/images/20241014-profiles2.png | Bin 0 -> 368997 bytes blog/index.html | 39 ++++++ cs/index.html | 5 +- de/index.html | 5 +- en/index.html | 9 +- es/index.html | 5 +- feed.atom | 122 +++++++++++++++++- feed.rss | 120 ++++++++++++++++- fi/index.html | 5 +- fr/index.html | 5 +- he/index.html | 5 +- hu/index.html | 5 +- index.html | 9 +- it/index.html | 5 +- ja/index.html | 5 +- nl/index.html | 5 +- pl/index.html | 5 +- privacy/index.html | 5 +- pt_BR/index.html | 5 +- ru/index.html | 5 +- security/index.html | 5 +- transparency/index.html | 8 +- uk/index.html | 5 +- zh_Hans/index.html | 5 +- zh_Hant/index.html | 9 +- 33 files changed, 447 insertions(+), 78 deletions(-) create mode 100644 blog/images/20241014-calls.png create mode 100644 blog/images/20241014-forward.png create mode 100644 blog/images/20241014-messages.png create mode 100644 blog/images/20241014-profiles1.png create mode 100644 blog/images/20241014-profiles2.png diff --git a/ar/index.html b/ar/index.html index e41914c418..46785fc174 100644 --- a/ar/index.html +++ b/ar/index.html @@ -692,12 +692,11 @@ window.addEventListener('scroll',changeHeaderBg); Trail of Bits هي شركة رائدة في مجال الاستشارات الأمنية والتكنولوجية، ومن بين عملائها شركات التكنولوجيا الكبرى والوكالات الحكومية ومشاريع Blockchain الكبرى.

- قامت Trail of Bits بمراجعة مكونات التشفير والشبكات الخاصة بمنصة SimpleX في نوفمبر 2022. + قامت Trail of Bits بمراجعة مكونات التشفير والشبكات الخاصة بمنصة SimpleX في نوفمبر 2022. اقرأ المزيد في الإعلان.

- اقرأ المزيد في الإعلان. + Trail of Bits reviewed cryptographic design of SimpleX network protocols in July 2024. Read more.

- diff --git a/bg/index.html b/bg/index.html index b21e3206b3..9b36787267 100644 --- a/bg/index.html +++ b/bg/index.html @@ -673,7 +673,7 @@ window.addEventListener('scroll',changeHeaderBg); diff --git a/de/index.html b/de/index.html index f9841f4f9e..50d3b779c4 100644 --- a/de/index.html +++ b/de/index.html @@ -690,12 +690,11 @@ window.addEventListener('scroll',changeHeaderBg); Trail of Bits ist eine führende Security- und Technologie-Unternehmensberatung, deren Kunden aus den Bereichen Big-Tech, Regierungsbehörden und großen Blockchain-Projekten stammen.

- Trail of Bits untersuchte im November 2022 die kryptografischen und Netzwerk-Komponenten der SimpleX-Plattform. + Trail of Bits untersuchte im November 2022 die kryptografischen und Netzwerk-Komponenten der SimpleX-Plattform. Lesen Sie mehr dazu in der Ankündigung.

- Lesen Sie mehr dazu in der Ankündigung. + Trail of Bits reviewed cryptographic design of SimpleX network protocols in July 2024. Read more.

- diff --git a/en/index.html b/en/index.html index 98705e3af4..720a5accb3 100644 --- a/en/index.html +++ b/en/index.html @@ -676,12 +676,12 @@ window.addEventListener('scroll',changeHeaderBg); - Security assessment + Security assessments diff --git a/feed.atom b/feed.atom index 014e4210ca..f3839bdec9 100644 --- a/feed.atom +++ b/feed.atom @@ -901,7 +901,7 @@ <p>2 medium and 2 low severity issues were identified, all of which require a high difficulty attack to exploit – the attacker would need to have a privileged access to the system, may need to know complex technical details, or must discover other weaknesses to exploit them. 3 of these issues are already fixed in v4.2.</p> <p>In the course of the audit, Trail of Bits assessed the maturity of the <a href="https://github.com/simplex-chat/simplexmq">simplexmq library</a> across eight categories and found five of them to be strong or satisfactory.</p> <p>Explained below is our understanding of the issues, as well as fixes implemented by the SimpleX Chat team after project completion. The full security review is available via <a href="https://github.com/trailofbits/publications/blob/master/reviews/SimpleXChat.pdf">Trail of Bits publications</a>.</p> -<p>We are hugely thankful to Trail of Bits and their engineers for the work they did, helping us identify these issues and supporting the ongoing efforts to make Simple Chat more secure.</p> +<p>We are hugely thankful to Trail of Bits and their engineers for the work they did, helping us identify these issues and supporting the ongoing efforts to make SimpleX Chat more secure.</p> <h3 id="medium-severity-issues" tabindex="-1">Medium severity issues</h3> <h4 id="x3dh-key-exchange-for-double-ratchet-protocol" tabindex="-1">X3DH key exchange for double ratchet protocol</h4> <p>We made a mistake implementing X3DH key exchange - the key derivation function was not applied to the result of concatenation of three DH operations. The attack to exploit this mistake has high difficulty, as it would require compromising one of private keys generated by the clients, and also it would only affect forward secrecy until break-in recovery happens (after both sides sent some messages).</p> @@ -2873,6 +2873,126 @@ A few bugs and UX issues but great foundation. Love that it’s public domain.&l <p>Thank you,</p> <p>Evgeny</p> <p>SimpleX Chat founder</p> + + + SimpleX Chat + chat@simplex.chat + + + + https://simplex.chat/blog/20241014-simplex-network-v6-1-security-review-better-calls-user-experience.html + + 2024-10-14T00:00:00Z + + SimpleX network: cryptographic design review by Trail of Bits, v6.1 released with better calls and user experience. + <h1 id="simplex-network-security-review-of-protocols-design-by-trail-of-bits-v61-released-with-better-calls-and-user-experience" tabindex="-1">SimpleX network: security review of protocols design by Trail of Bits, v6.1 released with better calls and user experience.</h1> +<p><strong>Published:</strong> Oct 14, 2024</p> +<p><a href="https://simplex.chat/blog/20241014-simplex-network-v6-1-security-review-better-calls-user-experience.html#simplex-cryptographic-design-review-by-trail-of-bits">New security audit</a>:</p> +<ul> +<li><a href="https://simplex.chat/blog/20241014-simplex-network-v6-1-security-review-better-calls-user-experience.html#review-findings-our-comments-and-improvements">review findings</a>, our comments and improvements.</li> +<li><a href="https://simplex.chat/blog/20241014-simplex-network-v6-1-security-review-better-calls-user-experience.html#next-security-audit-in-2025">next</a>: security audit in early 2025.</li> +</ul> +<p><a href="https://simplex.chat/blog/20241014-simplex-network-v6-1-security-review-better-calls-user-experience.html#whats-new-in-v61">What's new in v6.1</a>:</p> +<ul> +<li><a href="https://simplex.chat/blog/20241014-simplex-network-v6-1-security-review-better-calls-user-experience.html#better-calls">better calls</a>.</li> +<li><a href="https://simplex.chat/blog/20241014-simplex-network-v6-1-security-review-better-calls-user-experience.html#better-ios-notifications">better iOS notifications</a>.</li> +<li><a href="https://simplex.chat/blog/20241014-simplex-network-v6-1-security-review-better-calls-user-experience.html#better-user-experience">better user experience</a>.</li> +</ul> +<h2 id="simplex-cryptographic-design-review-by-trail-of-bits" tabindex="-1">SimpleX cryptographic design review by Trail of Bits</h2> +<img src="https://simplex.chat/blog/images/20221108-trail-of-bits.jpg" width="240" /> +<p>It's been almost two years since Trail of Bits did the first security assessment of SimpleX Chat.</p> +<p>Since then SimpleX Chat grew a lot, both in the number of users and in its functionality. We added XFTP — a protocol for sending files, — and XRCP — the protocol for using a mobile app profile from a desktop app. Messaging protocols also evolved a lot, adding private message routing and quantum resistant encryption.</p> +<p>Trail of Bits reviewed the design of protocols used in SimpleX network and applications in July 2024. Even though there are no critical issues, we made some security improvements based on this report.</p> +<p><a href="https://www.trailofbits.com/about">Trail of Bits</a> is a US based security and technology consultancy whose clients include big tech companies, governmental agencies and major blockchain projects. Its engineers reviewed the cryptographic design of the protocols used in SimpleX network and applications over a week:</p> +<ul> +<li>SimpleX Messaging Protocol (SMP), including a formal verification of currently used message queue negotiation protocol,</li> +<li>the SMP agent protocol,</li> +<li>the push notification system,</li> +<li>the file transfer protocol (XFTP),</li> +<li>the remote control protocol (XRCP),</li> +<li>and the chat protocol.</li> +</ul> +<p>There are 3 medium and 1 low severity findings, all of which require a high difficulty attack to exploit — the attacker would need to have a privileged access to the system, may need to know complex technical details, or must discover other weaknesses to exploit them. Additionally, there are 3 informational findings.</p> +<p>3 of these issues are improved in v6.1, and the remaining issues are accepted. Below we are commenting on these findings in detail, and also on the released improvements.</p> +<p>The full cryptographic design review is available <a href="https://github.com/simplex-chat/simplex-chat/blob/stable/docs/SimpleX_Design_Review_2024_Summary_Report_12_08_2024.pdf">here</a>.</p> +<p>We are very thankful to Trail of Bits and their engineers for their work identifying these issues and helping us make SimpleX Chat more secure.</p> +<h3 id="review-findings-our-comments-and-improvements" tabindex="-1">Review findings, our comments and improvements</h3> +<h4 id="protocols-specifications-informational" tabindex="-1">Protocols specifications (informational)</h4> +<p>The review finding #1 is that the protocols specification is informal. We addressed <a href="https://github.com/simplex-chat/simplexmq/commit/7b6c86c6c1093cdae5ad2ee566655828076bc25c">reported</a> <a href="https://github.com/simplex-chat/simplex-chat/commit/1cb3c25478db0f2a42c943f7469f5f9f75752a27">inconsistencies</a>, and we accept that we need to improve specification beyond verbose descriptions and ABNF syntax specification, and add algebraic notations and sequence diagrams. Having said that, the current specification correctly describes the implemented protocol, without any contradictions.</p> +<h4 id="user-correlating-attacks-via-introduced-latency-or-via-get-command-of-messaging-protocol-medium-and-low-severity" tabindex="-1">User-correlating attacks via introduced latency or via GET command of messaging protocol (medium and low severity)</h4> +<p>These two findings #7 and #2 of the report relate to the attacks confirming that two known users communicate via observing their internet traffic.</p> +<p>The first attack is possible for a party that can introduce the latency in the network traffic. This attacker has to control some network node that passes the traffic of the sender — for example, it could be the sender's ISP, VPN provider, Tor entry node operator, the operator of the forwarding SMP server or a server hosting provider, etc. Such attacker can correlate delays in sender's traffic and the suspected recipient's traffic to confirm that they communicate.</p> +<p>The second attack relates to GET command used by iOS clients receiving notifications — depending on whether the server has the message, there will be a different number of packets sent, allowing the observer to determine if there was the message. While this comment is correct, in practice iOS clients only send GET commands when they receive notification, which also happens only when there is a message on the server, so in absolute majority of cases the number of packets will be the same.</p> +<p>These are not new findings — this type of attacks is covered in <a href="https://github.com/simplex-chat/simplexmq/blob/stable/protocol/overview-tjr.md#a-passive-adversary-able-to-monitor-a-set-of-senders-and-recipients">threat model</a>: <em>a passive adversary able to monitor a set of senders and recipients <strong>can</strong> perform traffic correlation attacks against senders and recipients and correlate senders and recipients within the monitored set, frustrated by the number of users on the servers</em>.</p> +<p>As threat model states, this attack is more likely to be successful with the less busy servers, and also for the users with few connections.</p> +<p>The recommendation of the review is to add optional randomized latency to message delivery that would reduce the opportunities for traffic correlation attacks — we consider adding it in the future.</p> +<h4 id="a-compromised-transport-protocol-allows-more-efficient-correlation-attacks-medium-severity" tabindex="-1">A compromised transport protocol allows more efficient correlation attacks (medium severity)</h4> +<p>The finding #3 is about the incorrect statement in threat model for SMP and XFTP protocols: <em>a passive adversary, able to monitor a set of senders and recipients, <strong>cannot</strong>, even in case of a compromised transport protocol perform traffic correlation attacks with any increase in efficiency over a non-compromised transport protocol</em>.</p> +<p>For protocols prior to v6.1 it is only partially correct, as responses to the commands that create a messaging queue or a file chunk include the identifiers both for senders and for the recipients, so if any observers were to compromise transport protocol (TLS) and record these identifiers, then they were able to correlate message senders with the recipients (and file recipients with the file senders).</p> +<p>The solution to make this correlation impossible even in case of compromised TLS is to encrypt these identifiers, as proposed in the review, or, better, encrypt the whole transmission inside TLS.</p> +<p>However unlikely is TLS being compromised, we added additional <a href="https://github.com/simplex-chat/simplexmq/pull/1317/files">transport encryption layer in SMP protocol</a>, where it can be more important, and we are going to add the same layer of encryption in XFTP protocol later, where we <a href="https://github.com/simplex-chat/simplexmq/commit/7b6c86c6c1093cdae5ad2ee566655828076bc25c">amended the threat model</a>.</p> +<h4 id="xrcp-protocol-recommendations-informational" tabindex="-1">XRCP protocol recommendations (informational)</h4> +<p>XRCP protocol is used for connecting desktop and mobile. There are two findings in the review:</p> +<ul> +<li>SHA256 was used as a KDF in XRCP (#4).</li> +<li>there was no forward secrecy or break-in recovery between sessions (#5).</li> +</ul> +<p>SHA256 is now <a href="https://github.com/simplex-chat/simplexmq/pull/1302/files">replaced with SHA3-256</a>, as was <a href="https://www.ietf.org/archive/id/draft-josefsson-ntruprime-hybrid-01.html">recommended</a> by the internet draft about hybrid key agreement that XRCP uses.</p> +<p>Even though XRCP sessions are short lived, and usually the connection happens over local network, we added forward secrecy to XRCP sessions <a href="https://github.com/simplex-chat/simplexmq/pull/1328/files">here</a> and <a href="https://github.com/simplex-chat/simplex-chat/pull/4926/files">here</a> — each request from desktop app to mobile app is now encrypted with a new key derived from chain ratchets. This improves security of this connection.</p> +<p>We believe that it is unnecessary to have in-session break-in recovery in XRCP protocol, as there is break-in recovery between the sessions.</p> +<h4 id="device-compromise-can-be-hidden-in-some-scenarios-medium" tabindex="-1">Device compromise can be hidden in some scenarios (medium)</h4> +<p>The finding #6 in the report is about an attacker who was not only able to break into the device and get a copy of the database, which would be mitigated by break-in recovery in <a href="https://simplex.chat/docs/glossary.html#double-ratchet-algorithm">double ratchet protocol</a>, but also was able to modify the state of the app database and to substitute the addresses and cryptographic keys of the messaging queues used with some contact with other message queues that the attacker controls.</p> +<p>Even though this is a very hard attack, if successful, it would allow the attacker intercepting all messages with this contact.</p> +<p>Effectively, it is a <a href="https://simplex.chat/docs/glossary.html#man-in-the-middle-attack">man-in-the-middle attack</a>, where an intermediary is inserted via the app database modification. Such attack can be mitigated by periodic verification of security codes. Although, the attacker who was able to modify the state of the device, could have also modified the app itself, making it show the same security code as the compromised contact has, thus avoiding detection.</p> +<p>We accept that such an attack is possible, and we don't believe there is any viable defense against the attacker who can modify the device state. We may consider adding the measures to validate the database integrity, but they may be ineffective in case the app and/or operating system are compromised.</p> +<h3 id="next-security-audit-in-2025" tabindex="-1">Next: security audit in 2025</h3> +<p>We are planning the implementation security assessment with Trail of Bits in the beginning of 2025. It will be a twice bigger assessment than we did in 2022 — it will cover both the core of the app and the handling of cryptographic secrets in the mobile applications.</p> +<h2 id="whats-new-in-v61" tabindex="-1">What's new in v6.1</h2> +<p>This release has many user experience and stability improvements.</p> +<h3 id="better-calls" tabindex="-1">Better calls</h3> +<img src="https://simplex.chat/blog/images/20241014-calls.png" width="288" class="float-to-right" /> +<p>This release improves reliability and usability of the calls. Now you can enable the camera and share the screen from the desktop app even if the call started as a voice call. We've also fixed several issues that prevented calls from connecting.</p> +<p>This is a substantial change, and some issues may have been introduced - please report them.</p> +<p>We will be further improving the calls interface in the app in the next versions.</p> +<h3 id="better-ios-notifications" tabindex="-1">Better iOS notifications</h3> +<p>iOS notifications were added <a href="https://simplex.chat/blog/20220711-simplex-chat-v3-released-ios-notifications-audio-video-calls-database-export-import-protocol-improvements.html">more than 2 years ago</a>, based on this <a href="https://simplex.chat/blog/20220404-simplex-chat-instant-notifications.html">system design</a>. Until recently we made almost no improvements to them. As the number of iOS users is growing, their reliability is insufficient. In addition to that, once we started the work on improving them, we have found several important issues, one of which was introduced recently, when we improved the speed of creating new connections.</p> +<p>This release fixes many important issues with iOS notifications delivery in iOS app, improves app performance and reduces traffic required to manage notifications.</p> +<p>We also fixed several notification server issues, made change that almost completely prevents losing notifications when notification servers are restarted, and added real-time monitoring to diagnose any issues with iOS notifications delivery.</p> +<p>This work is not over – iOS notifications in a decentralized network are complex and require more work. We will be further improving both client apps and servers to make their delivery stable.</p> +<h3 id="better-user-experience" tabindex="-1">Better user experience</h3> +<h4 id="new-conversation-layout-and-customizable-messages" tabindex="-1">New conversation layout and customizable messages</h4> +<img src="https://simplex.chat/blog/images/20241014-messages.png" width="288" class="float-to-right" /> +<p>Messages are now grouped when they are sent sequentially, with less than 60 seconds between them. We also made message shapes configurable, and separated the messages in different days. When you scroll conversation quickly, there will be a floating date indication, allowing to find messages faster.</p> +<h4 id="improved-switching-between-user-profiles" tabindex="-1">Improved switching between user profiles</h4> +<p><img src="https://simplex.chat/blog/images/20241014-profiles2.png" width="288" class="float-to-right" /> <img src="https://simplex.chat/blog/images/20241014-profiles1.png" width="288" class="float-to-right" /></p> +<p>Another improvement relates to switching between chat profiles. Previously, when you added multiple chat profiles to the app, there were two problems:</p> +<ul> +<li>you had to tap twice to get to some important functions in the app,</li> +<li>anybody who could see your screen, could also see all your chat profiles.</li> +</ul> +<p>We changed this design by making important functions available after tapping profile image once, and by only showing the previously used profile image to switch to it quickly, while switching to other profiles now requires scrolling to them or opening <em>Your chat profiles</em> screen.</p> +<p>You also can switch chat profile when creating a one-time invitation link.</p> +<h4 id="faster-deletion-moderation-and-forwarding-of-messages" tabindex="-1">Faster deletion, moderation and forwarding of messages</h4> +<img src="https://simplex.chat/blog/images/20241014-forward.png" width="288" class="float-to-right" /> +<p>You now can forward multiple messages at once - up to 20. If you are forwarding messages with files or media, and they were not received, the app will offer you to download them, and it will also allow forwarding messages without files. These messages will be &quot;packed&quot; into the smallest number of sent messages as possible. If there are no images and messages are not too large, it will be just one sent message containing all forwarded messages.</p> +<p>The previous version allowed deleting and moderating multiple messages. As most users now upgraded the app, we increased the maximum number of messages that can be deleted or moderated to 200 messages - in most cases all these deletions will be packed into one sent message.</p> +<h2 id="simplex-network" tabindex="-1">SimpleX network</h2> +<p>Some links to answer the most common questions:</p> +<p><a href="https://simplex.chat/blog/20220511-simplex-chat-v2-images-files.html#the-first-messaging-platform-without-user-identifiers">How can SimpleX deliver messages without user identifiers</a>.</p> +<p><a href="https://simplex.chat/blog/20220711-simplex-chat-v3-released-ios-notifications-audio-video-calls-database-export-import-protocol-improvements.html#why-having-users-identifiers-is-bad-for-the-users">What are the risks to have identifiers assigned to the users</a>.</p> +<p><a href="https://github.com/simplex-chat/simplex-chat#privacy-technical-details-and-limitations">Technical details and limitations</a>.</p> +<p><a href="https://simplex.chat/faq/index.html">Frequently asked questions</a>.</p> +<p>Please also see our <a href="https://simplex.chat/">website</a>.</p> +<h2 id="please-support-us-with-your-donations" tabindex="-1">Please support us with your donations</h2> +<p>Huge <em>thank you</em> to everybody who donated to SimpleX Chat!</p> +<p>Prioritizing users privacy and security, and also raising the investment, would have been impossible without your support and donations.</p> +<p>Also, funding the work to transition the protocols to non-profit governance model would not have been possible without the donations we received from the users.</p> +<p>Our pledge to our users is that SimpleX protocols are and will remain open, and in public domain, so anybody can build the future implementations of the clients and the servers. We are building SimpleX platform based on the same principles as email and web, but much more private and secure.</p> +<p>Your donations help us raise more funds — any amount, even the price of the cup of coffee, makes a big difference for us.</p> +<p>See <a href="https://github.com/simplex-chat/simplex-chat/tree/master#help-us-with-donations">this section</a> for the ways to donate.</p> +<p>Thank you,</p> +<p>Evgeny</p> +<p>SimpleX Chat founder</p> SimpleX Chat diff --git a/feed.rss b/feed.rss index a2aa9ee0a4..74be02cabf 100644 --- a/feed.rss +++ b/feed.rss @@ -6,6 +6,124 @@ It allows you to stay up to date with the latest Blogs from SimpleX Chat. en + + SimpleX network: cryptographic design review by Trail of Bits, v6.1 released with better calls and user experience. + https://simplex.chat/blog/20241014-simplex-network-v6-1-security-review-better-calls-user-experience.html + <h1 id="simplex-network-security-review-of-protocols-design-by-trail-of-bits-v61-released-with-better-calls-and-user-experience" tabindex="-1">SimpleX network: security review of protocols design by Trail of Bits, v6.1 released with better calls and user experience.</h1> +<p><strong>Published:</strong> Oct 14, 2024</p> +<p><a href="https://simplex.chat/blog/20241014-simplex-network-v6-1-security-review-better-calls-user-experience.html#simplex-cryptographic-design-review-by-trail-of-bits">New security audit</a>:</p> +<ul> +<li><a href="https://simplex.chat/blog/20241014-simplex-network-v6-1-security-review-better-calls-user-experience.html#review-findings-our-comments-and-improvements">review findings</a>, our comments and improvements.</li> +<li><a href="https://simplex.chat/blog/20241014-simplex-network-v6-1-security-review-better-calls-user-experience.html#next-security-audit-in-2025">next</a>: security audit in early 2025.</li> +</ul> +<p><a href="https://simplex.chat/blog/20241014-simplex-network-v6-1-security-review-better-calls-user-experience.html#whats-new-in-v61">What's new in v6.1</a>:</p> +<ul> +<li><a href="https://simplex.chat/blog/20241014-simplex-network-v6-1-security-review-better-calls-user-experience.html#better-calls">better calls</a>.</li> +<li><a href="https://simplex.chat/blog/20241014-simplex-network-v6-1-security-review-better-calls-user-experience.html#better-ios-notifications">better iOS notifications</a>.</li> +<li><a href="https://simplex.chat/blog/20241014-simplex-network-v6-1-security-review-better-calls-user-experience.html#better-user-experience">better user experience</a>.</li> +</ul> +<h2 id="simplex-cryptographic-design-review-by-trail-of-bits" tabindex="-1">SimpleX cryptographic design review by Trail of Bits</h2> +<img src="https://simplex.chat/blog/images/20221108-trail-of-bits.jpg" width="240" /> +<p>It's been almost two years since Trail of Bits did the first security assessment of SimpleX Chat.</p> +<p>Since then SimpleX Chat grew a lot, both in the number of users and in its functionality. We added XFTP — a protocol for sending files, — and XRCP — the protocol for using a mobile app profile from a desktop app. Messaging protocols also evolved a lot, adding private message routing and quantum resistant encryption.</p> +<p>Trail of Bits reviewed the design of protocols used in SimpleX network and applications in July 2024. Even though there are no critical issues, we made some security improvements based on this report.</p> +<p><a href="https://www.trailofbits.com/about">Trail of Bits</a> is a US based security and technology consultancy whose clients include big tech companies, governmental agencies and major blockchain projects. Its engineers reviewed the cryptographic design of the protocols used in SimpleX network and applications over a week:</p> +<ul> +<li>SimpleX Messaging Protocol (SMP), including a formal verification of currently used message queue negotiation protocol,</li> +<li>the SMP agent protocol,</li> +<li>the push notification system,</li> +<li>the file transfer protocol (XFTP),</li> +<li>the remote control protocol (XRCP),</li> +<li>and the chat protocol.</li> +</ul> +<p>There are 3 medium and 1 low severity findings, all of which require a high difficulty attack to exploit — the attacker would need to have a privileged access to the system, may need to know complex technical details, or must discover other weaknesses to exploit them. Additionally, there are 3 informational findings.</p> +<p>3 of these issues are improved in v6.1, and the remaining issues are accepted. Below we are commenting on these findings in detail, and also on the released improvements.</p> +<p>The full cryptographic design review is available <a href="https://github.com/simplex-chat/simplex-chat/blob/stable/docs/SimpleX_Design_Review_2024_Summary_Report_12_08_2024.pdf">here</a>.</p> +<p>We are very thankful to Trail of Bits and their engineers for their work identifying these issues and helping us make SimpleX Chat more secure.</p> +<h3 id="review-findings-our-comments-and-improvements" tabindex="-1">Review findings, our comments and improvements</h3> +<h4 id="protocols-specifications-informational" tabindex="-1">Protocols specifications (informational)</h4> +<p>The review finding #1 is that the protocols specification is informal. We addressed <a href="https://github.com/simplex-chat/simplexmq/commit/7b6c86c6c1093cdae5ad2ee566655828076bc25c">reported</a> <a href="https://github.com/simplex-chat/simplex-chat/commit/1cb3c25478db0f2a42c943f7469f5f9f75752a27">inconsistencies</a>, and we accept that we need to improve specification beyond verbose descriptions and ABNF syntax specification, and add algebraic notations and sequence diagrams. Having said that, the current specification correctly describes the implemented protocol, without any contradictions.</p> +<h4 id="user-correlating-attacks-via-introduced-latency-or-via-get-command-of-messaging-protocol-medium-and-low-severity" tabindex="-1">User-correlating attacks via introduced latency or via GET command of messaging protocol (medium and low severity)</h4> +<p>These two findings #7 and #2 of the report relate to the attacks confirming that two known users communicate via observing their internet traffic.</p> +<p>The first attack is possible for a party that can introduce the latency in the network traffic. This attacker has to control some network node that passes the traffic of the sender — for example, it could be the sender's ISP, VPN provider, Tor entry node operator, the operator of the forwarding SMP server or a server hosting provider, etc. Such attacker can correlate delays in sender's traffic and the suspected recipient's traffic to confirm that they communicate.</p> +<p>The second attack relates to GET command used by iOS clients receiving notifications — depending on whether the server has the message, there will be a different number of packets sent, allowing the observer to determine if there was the message. While this comment is correct, in practice iOS clients only send GET commands when they receive notification, which also happens only when there is a message on the server, so in absolute majority of cases the number of packets will be the same.</p> +<p>These are not new findings — this type of attacks is covered in <a href="https://github.com/simplex-chat/simplexmq/blob/stable/protocol/overview-tjr.md#a-passive-adversary-able-to-monitor-a-set-of-senders-and-recipients">threat model</a>: <em>a passive adversary able to monitor a set of senders and recipients <strong>can</strong> perform traffic correlation attacks against senders and recipients and correlate senders and recipients within the monitored set, frustrated by the number of users on the servers</em>.</p> +<p>As threat model states, this attack is more likely to be successful with the less busy servers, and also for the users with few connections.</p> +<p>The recommendation of the review is to add optional randomized latency to message delivery that would reduce the opportunities for traffic correlation attacks — we consider adding it in the future.</p> +<h4 id="a-compromised-transport-protocol-allows-more-efficient-correlation-attacks-medium-severity" tabindex="-1">A compromised transport protocol allows more efficient correlation attacks (medium severity)</h4> +<p>The finding #3 is about the incorrect statement in threat model for SMP and XFTP protocols: <em>a passive adversary, able to monitor a set of senders and recipients, <strong>cannot</strong>, even in case of a compromised transport protocol perform traffic correlation attacks with any increase in efficiency over a non-compromised transport protocol</em>.</p> +<p>For protocols prior to v6.1 it is only partially correct, as responses to the commands that create a messaging queue or a file chunk include the identifiers both for senders and for the recipients, so if any observers were to compromise transport protocol (TLS) and record these identifiers, then they were able to correlate message senders with the recipients (and file recipients with the file senders).</p> +<p>The solution to make this correlation impossible even in case of compromised TLS is to encrypt these identifiers, as proposed in the review, or, better, encrypt the whole transmission inside TLS.</p> +<p>However unlikely is TLS being compromised, we added additional <a href="https://github.com/simplex-chat/simplexmq/pull/1317/files">transport encryption layer in SMP protocol</a>, where it can be more important, and we are going to add the same layer of encryption in XFTP protocol later, where we <a href="https://github.com/simplex-chat/simplexmq/commit/7b6c86c6c1093cdae5ad2ee566655828076bc25c">amended the threat model</a>.</p> +<h4 id="xrcp-protocol-recommendations-informational" tabindex="-1">XRCP protocol recommendations (informational)</h4> +<p>XRCP protocol is used for connecting desktop and mobile. There are two findings in the review:</p> +<ul> +<li>SHA256 was used as a KDF in XRCP (#4).</li> +<li>there was no forward secrecy or break-in recovery between sessions (#5).</li> +</ul> +<p>SHA256 is now <a href="https://github.com/simplex-chat/simplexmq/pull/1302/files">replaced with SHA3-256</a>, as was <a href="https://www.ietf.org/archive/id/draft-josefsson-ntruprime-hybrid-01.html">recommended</a> by the internet draft about hybrid key agreement that XRCP uses.</p> +<p>Even though XRCP sessions are short lived, and usually the connection happens over local network, we added forward secrecy to XRCP sessions <a href="https://github.com/simplex-chat/simplexmq/pull/1328/files">here</a> and <a href="https://github.com/simplex-chat/simplex-chat/pull/4926/files">here</a> — each request from desktop app to mobile app is now encrypted with a new key derived from chain ratchets. This improves security of this connection.</p> +<p>We believe that it is unnecessary to have in-session break-in recovery in XRCP protocol, as there is break-in recovery between the sessions.</p> +<h4 id="device-compromise-can-be-hidden-in-some-scenarios-medium" tabindex="-1">Device compromise can be hidden in some scenarios (medium)</h4> +<p>The finding #6 in the report is about an attacker who was not only able to break into the device and get a copy of the database, which would be mitigated by break-in recovery in <a href="https://simplex.chat/docs/glossary.html#double-ratchet-algorithm">double ratchet protocol</a>, but also was able to modify the state of the app database and to substitute the addresses and cryptographic keys of the messaging queues used with some contact with other message queues that the attacker controls.</p> +<p>Even though this is a very hard attack, if successful, it would allow the attacker intercepting all messages with this contact.</p> +<p>Effectively, it is a <a href="https://simplex.chat/docs/glossary.html#man-in-the-middle-attack">man-in-the-middle attack</a>, where an intermediary is inserted via the app database modification. Such attack can be mitigated by periodic verification of security codes. Although, the attacker who was able to modify the state of the device, could have also modified the app itself, making it show the same security code as the compromised contact has, thus avoiding detection.</p> +<p>We accept that such an attack is possible, and we don't believe there is any viable defense against the attacker who can modify the device state. We may consider adding the measures to validate the database integrity, but they may be ineffective in case the app and/or operating system are compromised.</p> +<h3 id="next-security-audit-in-2025" tabindex="-1">Next: security audit in 2025</h3> +<p>We are planning the implementation security assessment with Trail of Bits in the beginning of 2025. It will be a twice bigger assessment than we did in 2022 — it will cover both the core of the app and the handling of cryptographic secrets in the mobile applications.</p> +<h2 id="whats-new-in-v61" tabindex="-1">What's new in v6.1</h2> +<p>This release has many user experience and stability improvements.</p> +<h3 id="better-calls" tabindex="-1">Better calls</h3> +<img src="https://simplex.chat/blog/images/20241014-calls.png" width="288" class="float-to-right" /> +<p>This release improves reliability and usability of the calls. Now you can enable the camera and share the screen from the desktop app even if the call started as a voice call. We've also fixed several issues that prevented calls from connecting.</p> +<p>This is a substantial change, and some issues may have been introduced - please report them.</p> +<p>We will be further improving the calls interface in the app in the next versions.</p> +<h3 id="better-ios-notifications" tabindex="-1">Better iOS notifications</h3> +<p>iOS notifications were added <a href="https://simplex.chat/blog/20220711-simplex-chat-v3-released-ios-notifications-audio-video-calls-database-export-import-protocol-improvements.html">more than 2 years ago</a>, based on this <a href="https://simplex.chat/blog/20220404-simplex-chat-instant-notifications.html">system design</a>. Until recently we made almost no improvements to them. As the number of iOS users is growing, their reliability is insufficient. In addition to that, once we started the work on improving them, we have found several important issues, one of which was introduced recently, when we improved the speed of creating new connections.</p> +<p>This release fixes many important issues with iOS notifications delivery in iOS app, improves app performance and reduces traffic required to manage notifications.</p> +<p>We also fixed several notification server issues, made change that almost completely prevents losing notifications when notification servers are restarted, and added real-time monitoring to diagnose any issues with iOS notifications delivery.</p> +<p>This work is not over – iOS notifications in a decentralized network are complex and require more work. We will be further improving both client apps and servers to make their delivery stable.</p> +<h3 id="better-user-experience" tabindex="-1">Better user experience</h3> +<h4 id="new-conversation-layout-and-customizable-messages" tabindex="-1">New conversation layout and customizable messages</h4> +<img src="https://simplex.chat/blog/images/20241014-messages.png" width="288" class="float-to-right" /> +<p>Messages are now grouped when they are sent sequentially, with less than 60 seconds between them. We also made message shapes configurable, and separated the messages in different days. When you scroll conversation quickly, there will be a floating date indication, allowing to find messages faster.</p> +<h4 id="improved-switching-between-user-profiles" tabindex="-1">Improved switching between user profiles</h4> +<p><img src="https://simplex.chat/blog/images/20241014-profiles2.png" width="288" class="float-to-right" /> <img src="https://simplex.chat/blog/images/20241014-profiles1.png" width="288" class="float-to-right" /></p> +<p>Another improvement relates to switching between chat profiles. Previously, when you added multiple chat profiles to the app, there were two problems:</p> +<ul> +<li>you had to tap twice to get to some important functions in the app,</li> +<li>anybody who could see your screen, could also see all your chat profiles.</li> +</ul> +<p>We changed this design by making important functions available after tapping profile image once, and by only showing the previously used profile image to switch to it quickly, while switching to other profiles now requires scrolling to them or opening <em>Your chat profiles</em> screen.</p> +<p>You also can switch chat profile when creating a one-time invitation link.</p> +<h4 id="faster-deletion-moderation-and-forwarding-of-messages" tabindex="-1">Faster deletion, moderation and forwarding of messages</h4> +<img src="https://simplex.chat/blog/images/20241014-forward.png" width="288" class="float-to-right" /> +<p>You now can forward multiple messages at once - up to 20. If you are forwarding messages with files or media, and they were not received, the app will offer you to download them, and it will also allow forwarding messages without files. These messages will be &quot;packed&quot; into the smallest number of sent messages as possible. If there are no images and messages are not too large, it will be just one sent message containing all forwarded messages.</p> +<p>The previous version allowed deleting and moderating multiple messages. As most users now upgraded the app, we increased the maximum number of messages that can be deleted or moderated to 200 messages - in most cases all these deletions will be packed into one sent message.</p> +<h2 id="simplex-network" tabindex="-1">SimpleX network</h2> +<p>Some links to answer the most common questions:</p> +<p><a href="https://simplex.chat/blog/20220511-simplex-chat-v2-images-files.html#the-first-messaging-platform-without-user-identifiers">How can SimpleX deliver messages without user identifiers</a>.</p> +<p><a href="https://simplex.chat/blog/20220711-simplex-chat-v3-released-ios-notifications-audio-video-calls-database-export-import-protocol-improvements.html#why-having-users-identifiers-is-bad-for-the-users">What are the risks to have identifiers assigned to the users</a>.</p> +<p><a href="https://github.com/simplex-chat/simplex-chat#privacy-technical-details-and-limitations">Technical details and limitations</a>.</p> +<p><a href="https://simplex.chat/faq/index.html">Frequently asked questions</a>.</p> +<p>Please also see our <a href="https://simplex.chat/">website</a>.</p> +<h2 id="please-support-us-with-your-donations" tabindex="-1">Please support us with your donations</h2> +<p>Huge <em>thank you</em> to everybody who donated to SimpleX Chat!</p> +<p>Prioritizing users privacy and security, and also raising the investment, would have been impossible without your support and donations.</p> +<p>Also, funding the work to transition the protocols to non-profit governance model would not have been possible without the donations we received from the users.</p> +<p>Our pledge to our users is that SimpleX protocols are and will remain open, and in public domain, so anybody can build the future implementations of the clients and the servers. We are building SimpleX platform based on the same principles as email and web, but much more private and secure.</p> +<p>Your donations help us raise more funds — any amount, even the price of the cup of coffee, makes a big difference for us.</p> +<p>See <a href="https://github.com/simplex-chat/simplex-chat/tree/master#help-us-with-donations">this section</a> for the ways to donate.</p> +<p>Thank you,</p> +<p>Evgeny</p> +<p>SimpleX Chat founder</p> + + + Mon, 14 Oct 2024 00:00:00 +0000 + + SimpleX Chat + https://simplex.chat/blog/20241014-simplex-network-v6-1-security-review-better-calls-user-experience.html + SimpleX network: the investment from Jack Dorsey and Asymmetric, v6.0 released with the new user experience and private message routing. https://simplex.chat/blog/20240814-simplex-chat-vision-funding-v6-private-routing-new-user-experience.html @@ -1839,7 +1957,7 @@ file ---&gt; | XFTP | ------&gt; XFTP ----& <p>2 medium and 2 low severity issues were identified, all of which require a high difficulty attack to exploit – the attacker would need to have a privileged access to the system, may need to know complex technical details, or must discover other weaknesses to exploit them. 3 of these issues are already fixed in v4.2.</p> <p>In the course of the audit, Trail of Bits assessed the maturity of the <a href="https://github.com/simplex-chat/simplexmq">simplexmq library</a> across eight categories and found five of them to be strong or satisfactory.</p> <p>Explained below is our understanding of the issues, as well as fixes implemented by the SimpleX Chat team after project completion. The full security review is available via <a href="https://github.com/trailofbits/publications/blob/master/reviews/SimpleXChat.pdf">Trail of Bits publications</a>.</p> -<p>We are hugely thankful to Trail of Bits and their engineers for the work they did, helping us identify these issues and supporting the ongoing efforts to make Simple Chat more secure.</p> +<p>We are hugely thankful to Trail of Bits and their engineers for the work they did, helping us identify these issues and supporting the ongoing efforts to make SimpleX Chat more secure.</p> <h3 id="medium-severity-issues" tabindex="-1">Medium severity issues</h3> <h4 id="x3dh-key-exchange-for-double-ratchet-protocol" tabindex="-1">X3DH key exchange for double ratchet protocol</h4> <p>We made a mistake implementing X3DH key exchange - the key derivation function was not applied to the result of concatenation of three DH operations. The attack to exploit this mistake has high difficulty, as it would require compromising one of private keys generated by the clients, and also it would only affect forward secrecy until break-in recovery happens (after both sides sent some messages).</p> diff --git a/fi/index.html b/fi/index.html index 3e0f9f9217..92e3a6b26e 100644 --- a/fi/index.html +++ b/fi/index.html @@ -682,12 +682,11 @@ window.addEventListener('scroll',changeHeaderBg); Trail of Bits on johtava turvallisuus- ja teknologiakonsultointiyritys, jonka asiakkaita ovat muun muassa suuret teknologiayritykset, valtion virastot ja suuret lohkoketjuprojektit.

- Trail of Bits tarkasteli SimpleX-alustan salaus- ja verkkokomponentteja marraskuussa 2022. + Trail of Bits tarkasteli SimpleX-alustan salaus- ja verkkokomponentteja marraskuussa 2022. Lue lisää ilmoituksesta.

- Lue lisää ilmoituksesta. + Trail of Bits reviewed cryptographic design of SimpleX network protocols in July 2024. Read more.

- diff --git a/fr/index.html b/fr/index.html index df03d69ea2..a7a9663f8f 100644 --- a/fr/index.html +++ b/fr/index.html @@ -690,12 +690,11 @@ window.addEventListener('scroll',changeHeaderBg); Trail of Bits est un cabinet leader dans le secteur de la sécurité et des technologies qui compte parmi ses clients des grandes entreprises de la tech, des agences gouvernementales et d'importants projets de Blockchain.

- Trail of Bits a examiné les composants cryptographiques et réseau de la plateforme SimpleX en novembre 2022. + Trail of Bits a examiné les composants cryptographiques et réseau de la plateforme SimpleX en novembre 2022. En savoir plus.

- En savoir plus sur l'annonce. + Trail of Bits reviewed cryptographic design of SimpleX network protocols in July 2024. Read more.

- diff --git a/he/index.html b/he/index.html index 2f36695cf9..ffbab697b7 100644 --- a/he/index.html +++ b/he/index.html @@ -682,12 +682,11 @@ window.addEventListener('scroll',changeHeaderBg); Trail of Bits היא חברת ייעוץ מובילה בתחום אבטחה וטכנולוגיה שלקוחותיה כוללים ביג טק, סוכנויות ממשלתיות ופרויקטי בלוקצ'יין גדולים.

- Trail of Bits סקרה את רכיבי ההצפנה והרשת של פלטפורמת SimpleX בנובמבר 2022. + Trail of Bits סקרה את רכיבי ההצפנה והרשת של פלטפורמת SimpleX בנובמבר 2022. קרא עוד ב הודעה.

- קרא עוד בהודעה. + Trail of Bits reviewed cryptographic design of SimpleX network protocols in July 2024. Read more.

- diff --git a/hu/index.html b/hu/index.html index b0f3285cea..bdc5a16624 100644 --- a/hu/index.html +++ b/hu/index.html @@ -682,12 +682,11 @@ window.addEventListener('scroll',changeHeaderBg); Trail of Bits egy vezető biztonsági és technológiai tanácsadó cég, amelynek ügyfelei közé tartoznak a nagy technológiai cégek, kormányzati ügynökségek és jelentős blokklánc projektek.

- A Trail of Bits 2022 novemberében áttekintette a SimpleX-platform kriptográfiai és hálózati komponenseit. + A Trail of Bits 2022 novemberében áttekintette a SimpleX-platform kriptográfiai és hálózati komponenseit. További információk.

- További információk a közleményben. + Trail of Bits reviewed cryptographic design of SimpleX network protocols in July 2024. Read more.

- diff --git a/index.html b/index.html index 98705e3af4..720a5accb3 100644 --- a/index.html +++ b/index.html @@ -676,12 +676,12 @@ window.addEventListener('scroll',changeHeaderBg); - Security assessment + Security assessments diff --git a/ja/index.html b/ja/index.html index 4535d77d57..8a160c29f7 100644 --- a/ja/index.html +++ b/ja/index.html @@ -690,12 +690,11 @@ window.addEventListener('scroll',changeHeaderBg); Trail of Bitsは、大手ハイテク企業、政府機関、主要なブロックチェーン・プロジェクトなどを顧客に持つ、セキュリティとテクノロジーの大手コンサルタント会社です。

- Trail of Bitsは2022年11月にSimpleXプラットフォームの暗号とネットワークのコンポーネントを検証しました。 + Trail of Bitsは2022年11月にSimpleXプラットフォームの暗号とネットワークのコンポーネントを検証しました。詳しくは お知らせをご覧ください。

- 詳しくは お知らせをご覧ください。 + Trail of Bits reviewed cryptographic design of SimpleX network protocols in July 2024. Read more.

- diff --git a/nl/index.html b/nl/index.html index b81809806e..7f148e0592 100644 --- a/nl/index.html +++ b/nl/index.html @@ -690,12 +690,11 @@ window.addEventListener('scroll',changeHeaderBg); Trail of Bits is een toonaangevend beveiligings- en technologieadviesbureau met klanten onder meer grote technologiebedrijven, overheidsinstanties en grote Blockchain-projecten.

- Trail of Bits heeft in november 2022 de cryptografie en netwerkcomponenten van het SimpleX-platform beoordeeld. + Trail of Bits heeft in november 2022 de cryptografie en netwerkcomponenten van het SimpleX-platform beoordeeld. Lees meer in de aankondiging.

- Lees meer in de aankondiging. + Trail of Bits reviewed cryptographic design of SimpleX network protocols in July 2024. Read more.

- diff --git a/pl/index.html b/pl/index.html index 2dc8398cf8..3fbf45e2ba 100644 --- a/pl/index.html +++ b/pl/index.html @@ -690,12 +690,11 @@ window.addEventListener('scroll',changeHeaderBg); Trail of Bits jest wiodącą firmą konsultingową w zakresie bezpieczeństwa i technologii, której klientami są duże firmy technologiczne, agencje rządowe i główne projekty Blockchain.

- Trail of Bits przejrzał komponenty kryptograficzne i sieciowe platformy SimpleX w listopadzie 2022. + Trail of Bits przejrzał komponenty kryptograficzne i sieciowe platformy SimpleX w listopadzie 2022. Przeczytaj więcej w ogłoszeniach.

- Przeczytaj więcej w ogłoszeniach. + Trail of Bits reviewed cryptographic design of SimpleX network protocols in July 2024. Read more.

- diff --git a/privacy/index.html b/privacy/index.html index a49409b55b..f15dc08f48 100644 --- a/privacy/index.html +++ b/privacy/index.html @@ -579,7 +579,8 @@ window.addEventListener('scroll',changeHeaderBg);

SimpleX Chat software is similar in its design approach to email clients and browsers - it allows you to have full control of your data and freely choose the relay server providers, in the same way you choose which website or email provider to use, or use your own relay servers, simply by changing the configuration of the client software. The only current restriction to that is Apple push notifications - at the moment they can only be delivered via the preset servers that we operate, as explained below. We are exploring the solutions to deliver push notifications to iOS devices via other providers or users' own servers.

While SimpleX Chat Ltd is not a communication service provider, and provide public preset relays "as is", as experimental, without any guarantees of availability or data retention, we are committed to maintain a high level of availability, reliability and security of these preset relays. We will be adding alternative preset infrastructure providers to the software in the future, and you will continue to be able to use any other providers or your own servers.

We see users and data sovereignty, and device and provider portability as critically important properties for any communication system.

-

SimpleX Chat security assessment was done in October 2022 by Trail of Bits, and most fixes were released in v4.2 – see the announcement.

+

The implementation security assessment of SimpleX cryptography and networking was done in October 2022 by Trail of Bits, and most fixes were released in v4.2 – see the announcement.

+

The cryptographic review of SimpleX protocols design was done in July 2024 by Trail of Bits – see the announcement.

Your information

User profiles

Servers used by SimpleX Chat apps do not create, store or identify user profiles. The profiles you can create in the app are local to your device, and can be removed at any time via the app.

@@ -660,7 +661,7 @@ window.addEventListener('scroll',changeHeaderBg);

Changes to the conditions. SimpleX Chat Ltd may update the Conditions from time to time. Your continued use of our Applications confirms your acceptance of our updated Conditions and supersedes any prior Conditions. You will comply with all applicable export control and trade sanctions laws. Our Conditions cover the entire agreement between you and SimpleX Chat Ltd regarding our Applications. If you do not agree with our Conditions, you should stop using our Applications.

Enforcing the conditions. If we fail to enforce any of our Conditions, that does not mean we waive the right to enforce them. If any provision of the Conditions is deemed unlawful, void, or unenforceable, that provision shall be deemed severable from our Conditions and shall not affect the enforceability of the remaining provisions. Our Applications are not intended for distribution to or use in any country where such distribution or use would violate local law or would subject us to any regulations in another country. We reserve the right to limit our Applications in any country. If you have specific questions about these Conditions, please contact us at chat@simplex.chat.

Ending these conditions. You may end these Conditions with SimpleX Chat Ltd at any time by deleting our Applications from your devices and discontinuing use of our Infrastructure. The provisions related to Licenses, Disclaimers, Limitation of Liability, Resolving dispute, Availability, Changes to the conditions, Enforcing the conditions, and Ending these conditions will survive termination of your relationship with SimpleX Chat Ltd.

-

Updated April 24, 2024

+

Updated October 14, 2024

diff --git a/pt_BR/index.html b/pt_BR/index.html index d7aab1e828..272ee31f56 100644 --- a/pt_BR/index.html +++ b/pt_BR/index.html @@ -690,12 +690,11 @@ window.addEventListener('scroll',changeHeaderBg); Trail of Bits é uma consultoria líder em segurança e tecnologia cujos clientes incluem grandes empresas de tecnologia, agências governamentais e grandes projetos de Blockchain.

- Trail of Bits analisou a criptografia da plataforma SimpleX e os componentes de rede em novembro de 2022. + Trail of Bits analisou a criptografia da plataforma SimpleX e os componentes de rede em novembro de 2022. Leia mais em o anúncio.

- Leia mais em o anúncio. + Trail of Bits reviewed cryptographic design of SimpleX network protocols in July 2024. Read more.

- diff --git a/ru/index.html b/ru/index.html index 57b8fe3138..6149c2c472 100644 --- a/ru/index.html +++ b/ru/index.html @@ -690,12 +690,11 @@ window.addEventListener('scroll',changeHeaderBg); Trail of Bits - ведущая консалтинговая компания в области безопасности и технологий, клиентами которой являются крупные технологические компании, правительственные агентства и крупные блокчейн проекты.

- В ноябре 2022 года Trail of Bits провела обзор криптографии и сетевых компонентов SimpleX. + В ноябре 2022 года Trail of Bits провела обзор криптографии и сетевых компонентов SimpleX. Дополнительная информация.

- Подробнее читайте в анонсе. + В июле 2024 года Trail of Bits провела обзор криптографического дизайна протоколов SimpleX. Дополнительная информация.

- diff --git a/security/index.html b/security/index.html index aa3e54d10a..d1aa1f68c1 100644 --- a/security/index.html +++ b/security/index.html @@ -845,8 +845,9 @@ window.addEventListener('scroll',changeHeaderBg);

Security Policy

While great care is taken to ensure the highest level of security and privacy in SimpleX network servers and clients, all software can have flaws, and we believe it is a critical part of an organization's social responsibility to minimize the impact of these flaws through continual vulnerability discovery efforts, defense in depth design, and prompt remediation and notification.

-

The security assessment of SimpleX cryptography and networking was done by Trail of Bits in November 2022.

-

We are planning design review of SimpleX protocols in July 2024 and implementation review in December 2024/January 2025.

+

The implementation security assessment of SimpleX cryptography and networking was done by Trail of Bits in November 2022.

+

The cryptographic review of SimpleX protocols design was done by Trail of Bits in July 2024.

+

We are planning implementation security assessment in early 2025.

Reporting security issues

To report a security issue, please contact us directly via email chat@simplex.chat. Please do NOT report security issues via GitHub issues or via any public channels.

Please encrypt the email message using the key for this address from keys.openpgp.org (its fingerprint is FB44 AF81 A45B DE32 7319 797C 8510 7E35 7D4A 17FC) and make your key available for a secure reply.

diff --git a/transparency/index.html b/transparency/index.html index 0aec33ce96..e3105109d5 100644 --- a/transparency/index.html +++ b/transparency/index.html @@ -844,7 +844,7 @@ window.addEventListener('scroll',changeHeaderBg);

Transparency Reports

-

Updated: Jul 16, 2024

+

Updated: Oct 14, 2024

SimpleX Chat Ltd. is a company registered in the UK – it develops communication software enabling users to operate and communicate via SimpleX network, without user profile identifiers of any kind, and without having their data hosted by any network infrastructure operators.

This page will include any and all reports on requests for user data.

To date, we received none.

@@ -860,6 +860,12 @@ window.addEventListener('scroll',changeHeaderBg);
  • Threat model
    • +
  • Security assessments: +
      +
    • Trail of Bits, SimpleX cryptography and networking, October 2022.
      • +
    • Trail of Bits, the cryptographic review of SimpleX protocols design, July 2024.
      • +
    +

    • Have a more specific question? Reach out to us via SimpleX Chat or via email chat@simplex.chat.

    For any sensitive questions please use SimpleX Chat or encrypted email messages using the key for this address from keys.openpgp.org (its fingerprint is FB44 AF81 A45B DE32 7319 797C 8510 7E35 7D4A 17FC) and make your key available for a secure reply.

    diff --git a/uk/index.html b/uk/index.html index 0120c0407f..9cf3685770 100644 --- a/uk/index.html +++ b/uk/index.html @@ -690,12 +690,11 @@ window.addEventListener('scroll',changeHeaderBg); Trail of Bits є провідною консалтинговою фірмою з безпеки та технологій, клієнтами якої є великі технологічні компанії, урядові агенції та великі проекти у сфері блокчейну.

    - Trail of Bits переглянувало криптографію та компоненти мережі платформи SimpleX у листопаді 2022 року. + Trail of Bits переглянувало криптографію та компоненти мережі платформи SimpleX у листопаді 2022 року. Читайте більше в оголошенні.

    - Читайте більше в оголошенні. + Trail of Bits reviewed cryptographic design of SimpleX network protocols in July 2024. Read more.

    -
    diff --git a/zh_Hans/index.html b/zh_Hans/index.html index 2a9fc338c5..271de5bc6b 100644 --- a/zh_Hans/index.html +++ b/zh_Hans/index.html @@ -690,12 +690,11 @@ window.addEventListener('scroll',changeHeaderBg); Trail of Bits 是一家领先的安全和技术咨询企业,其客户包括大型科技公司、政府机构和重要的区块链项目。

    - 2022年11月份,Trail of Bits 审核了 SimpleX 平台的密码学和网络部件。 + 2022年11月份,Trail of Bits 审核了 SimpleX 平台的密码学和网络部件。更多内容见 该公告

    - 更多内容见 该公告。 + Trail of Bits reviewed cryptographic design of SimpleX network protocols in July 2024. Read more.

    - diff --git a/zh_Hant/index.html b/zh_Hant/index.html index 7c303c2186..ae6e1ec95a 100644 --- a/zh_Hant/index.html +++ b/zh_Hant/index.html @@ -668,12 +668,12 @@ window.addEventListener('scroll',changeHeaderBg); - Security assessment + Security assessments