In response, Cryptocat made improvements to user authentication, making it easier for users to authenticate and detect man-in-the-middle attacks. In February 2014, an audit by iSec Partners criticized Cryptocat's authentication model as insufficient. In response, Cryptocat issued a security advisory, requested that all users ensure that they had upgraded, and informed users that past group conversations may have been compromised. Private messages were not affected, and the bug had been resolved a month before. In June 2013, security researcher Steve Thomas pointed out a security bug that could be used to decrypt any group chat message that had taken place using Cryptocat between September 2012 and 19 April 2013. He tweeted about the incident afterwards, resulting in media coverage and a spike in the popularity of the software. border by the DHS and questioned about Cryptocat's censorship resistance. In June 2012, Kobeissi said he was detained at the U.S. Ĭryptocat was created by Nadim Kobeissi and further developed along with a community of open source contributors and is published under the terms of the GPLv3 license, although it has since been discontinued.Ĭryptocat was first launched on as a web application. Users are given the option of independently verifying their buddies' device lists and are notified when a buddy's device list is modified and all updates are verified through the built-in update downloader. It uses end-to-end encryption to secure all communications to other Cryptocat users. Cryptocat is a discontinued open-source desktop application intended to allow encrypted online chatting available for Windows, OS X, and Linux.
0 Comments
Leave a Reply. |