Download the Android-APK installers here or at F-Droid .
Smoke - Android Application for Encrypted Chat.
|
|
| secure | open | mobile | own federatable servers | | individually definable crypto-values for e2e encryption | |
https:// smoke app ope . sourceforge.io
This site is a community research page to provide a collection of the APK installers of Smoke Messenger.
Please find the original Smoke development page here: https://textbrowser.github.io/smoke/
Respective the APK installers at F-Droid.org: https://f-droid.org/de/packages/org.purple.smoke/
Download the Android-APK installers here or at F-Droid .
Smoke is an encrypting, open source, chat messenger application for mobile Android devices, like tablets and cell phones, written in Java.
Smoke is not like other alternatives*) ...
*) e.g. like Whatsapp, Telegram, Threema (to mention three most popular closed source applications) or Signal, GoldBug, Wire, Conversations, Chatsecure or Antox (to mention six alternatively relevant mobile crypto chat applications, which are open source - but do not allow to have an own chat server or do not meet other criteria mentioned below).
...as Smoke has these unique feature propositions in its basket:
with Smoke, you can easily run your own, decentralized and federatable private chat server (even mobile server for Android: SmokeStack Server or Spot-On Server for different Operation systems with bigger scale),
that also means that the application Smoke does not upload, copy and index (or some say steal) your phone book contacts. Instead shaere your key over an Alias or the Smoke-ID: a 32-digit SipHashID as Chat-ID is used, which looks like @1234-AEF2-EIA3-31DE-6789-GEF3-KIA6-55US and, more easily, any Alias can be defined by the user, to create a symmetric encrypted channel to transfer the keys.
option to manually specify individual encryption values, e.g. for size of key generation or own password-definition of end-to-end-encryption. The standard of Cryptographic Calling with Instant Perfect Forward Secrecy (IPFS) has been implemented into Smoke: Renew your end-to-end encryption whenever you want - instantly with one click on the "Call" button,
Open Source (BSD License) for both, mobile client and chat server.
Smoke is the only mobile crypto chat, which is open source, allows you to use your own decentral chat server, does not send your phone number to central servers or friends, and fifth, is able to define your own end-to-end enctypting passwords manually by your individual choice.
Smoke is known as the one of the first mobile Messenger, which implemented the quantum-computing secure McEliece algorihtm worldwide. Please read also here about McEliece-Messaging.
So far no other application matches these seven criteria.
The screenshot shows the chat tab with dialogues to one or several marked friends. When the send button is green, you are connected to a server. If your friend shows a green Wifi-Symbol, she or he is online. Please press the Call button first to provide an AES-encryption layer. Layer means you change the (by default) asymmetric group chat to a symmetric group chat (via AES) per user.
Smoke might have several connotations for every user - what is yours?
Smoke is a Sign or Signal for communication over distances?
Smoke creates an alternative to the clouds?
Smoke-A-Pope? No! There is no religious context mentioned or intended.
SmokeApp OPE ? Yes - Online Poem Encryption with SmokeApp OPE @sourceforge.io.
Make a pause at work to smoke?
Meet friends, while you smoke?
Smoke is your feedom to commuicate secure?
Smoke shows that crypto analysts are on fire?
Using Smoke is "back to the roots" in messaging friends?
Smoke is not driven by any commercial party. Developers are welcomed e.g. to fork and improve the Graphical User Interface (GUI), as the licensce is open BSD and the code may be used by everyone.
The screenshot shows the chat window with those friends checked, who should receive your message. The "Call" button creates a new end-to-end encryption (via AES) instantly ("Cryptographic Calling"). Online Friends have a status icon, friends without keys are also highlighted and need to go through the SipHashID exchange and "Share Keys" button action (via the Echo-Public-Key-Share-(EPKS)-Protocol).
Don't worry, it's easy: just exchange your SIpHashID or Alias with your friend, and press the green "Share Keys" button. Over this generated channel your asymmetric RSA keys are exchanged and the encrypted conversation can start after a Call: The "Cryptographic Calling" (see "Call"-button in the chat tab) provides a symmetric encryption (AES) to create "Forward Secrecy" in your end-to-end encryption with session keys.
The screenshot shows how easy it is to add a Neighbor/Server IP-Address.
The following applications are currently comparable, please consider to choose only open source chat applications, which also have an open source chat server and provide you the option to enter individually and manually defined end-to-end encryption password-strings at any time:
Score Card for Mobile Crypto Chat Applications |
|||||||||||||||
====CRITERIA==== | Smoke |
Whatsapp |
Telegram |
Threema |
GoldBug |
Signal |
Wire |
Conver sations |
Briar |
Chat secure |
Element |
Antox |
Delta Chat |
SimpleX |
Session |
Mobile App |
|||||||||||||||
Client Open Source |
|||||||||||||||
Quantum Immun: McEliece or NTRU |
|||||||||||||||
Own Open Chat Server |
BETA |
IMAP |
|||||||||||||
Mobile Server available (APK) |
DHT |
DHT |
./. |
DHT |
DHT |
||||||||||
No Phone Number Upload |
|||||||||||||||
Text in HDD-SQL encrypted |
|||||||||||||||
#BYOK: Bring Own E2E-Key/#CSEK |
|||||||||||||||
Attachments saved encrypted |
|||||||||||||||
Multiple devices |
|||||||||||||||
Man. renew sess key ("Crypto-Calling") |
|||||||||||||||
Chat to offline friends |
|||||||||||||||
Groupchat |
|||||||||||||||
Sym Encr. Groupchat |
|||||||||||||||
Asym Encr. Groupchat |
|||||||||||||||
Payment free |
|||||||||||||||
Argon2 Hasing |
|||||||||||||||
SCORE |
17 |
5 |
5 |
4 |
15 |
6 |
8 |
9 |
9 |
9 |
7 |
6 |
10 |
10 |
8 |
Source: https://smokeappope.sourceforge.io/ |
However, in the long run mobile crypto chat applications with decentral open source chat servers will be fundamental, which are easy to set up and administer. Smoke enables an open source chat server handling encrypted chat within every school, community and family as an option. Smokestack Server Software provides that even as a mobile server on Android.
The encryption within Smole utilizes a hybrid multiencryption, that means asymmetric (public keys, RSA) and symmetric keys (AES) are used. Your message is encrypted multiple times.
Once the set up is done, the public key of your asymmetric encryption (RSA) is turned into a session based symmetric encryption (AES).
You can instantly renew the end to end enctyption, Forward Secrecy is known as Instant Perfect Forward Secrecy (IPFS). Also you can use your own end to end encryption key (Customer Supplied Encryption Key, #CSEK).
Many applications upload and expose your complete phone book and friends list. Also you need to provide a new friend your phone number to be able to chat to you. Smoke is different. With Smoke you need not to give your phone number away nor you need to upload all your friends contact details to a central server, which might even cause a legal problem in several countries. Smoke uses a dedicated "SipHashID" as a Chat-ID. Just share with your friend your SipHashID, which has a 16 digit format like: @1234-DE3A-32BC-E78A.
When both have exchanged and entered the SipHashID of the friend, just press the green "Share Keys" button and your encryption keys are transferred to each other (via the Echo-Public-Key-Sharing Protocol (EPKS)). A key icon shows the success of the transfer. An easy way to provide encryption keys with a short identifier. The Echo-Public-Key-Sharing-Protokoll over the "Share Keys" Button works best, if both friends use the same chat server.
Smoke is open source, also the server software is open soure. The license is a simple BSD license, that means everyone can grab and use the code. Only the BSD license has to be kept. In this regard the code is available for everyone and everyone might use it. Smoke is an elaborated encryption application that is available for the public. Because of the open source mentality the code can be inspected and compiled by everyone. Backdoors are not possible and for this reason never choose or trust a closed source crypto application.
Smoke does not rely on one central chat server. Everyone can set up an own decentral crypto chat server for the own group, school or family. The chat servers can be connected amoung each others to a federation (network). It is a concept like decentral chat servers of XMPP, but has e.g. the advantage, that to set up an own server is much more easy - and even mobile Android servers are possible. Smoke uses the HTTPS protocol for a chat server, which is going through any firewall, the setup of a server is a two click install and does not require any special admin knowledge. HTTPS-chat-servers are the successor of XML-chat-servers over complicated protocols or difficult server install-routines. The server software for Smoke can be found at spot-on.sf.net. Also there is SmokeStack - a mobile server under Android for Smoke (see below). The Smoke application provides a test and development server-IP address under: dolphin-ipv4.cloud.tilaa.com and TCP-port 4710. Please use this server only for your scientific research and help to set up an own server for your friends.
Your encryption to your friends does not use permanent encryption keys, instead session-based ephemeral (temporary) keys are used. You can renew your end to end encryption at any time you want - using the "Call" Button for "Cryptographic Calling". And: You can use your own password-string for end to end encryption, which is individually and manually defined by yourself. As far as it is known no other application provides currently the option that you define manually a 32-digit AES like Password on your own in such a mobile encryption application. Just tap your finger a few seconds in the chat tab on a friend and get the context menu for a "custom" password entry provided.
Under the hashtag #CSEK is discussed that users or customers supply own encryption keys (CSEK - Customer Supplied Encryption Key). With Smoke you can define individually at any time that you want to renew your session based key instantly. This is the concept of Instant Perfect Forward Secrecy and is done via the "Cryptographic Calling" function. Just press the "Call" button and instantly a new session key is provided. The new session key (AES-String) is generated 50% by you and answerd with 50% of the key by your friend. This makes your conversation deniable.
Ozone is a function in Smoke, to define a password. If this password with your SipHashID is stored in the server "SmokeStack" and also by your friends - you have a common virtual address which lets you retrieve messages like from a postbox, in the case you have been offline with your mobile device. That means: An Ozone Address defines a virtual location, a separate device where messages are to be stored for later retrieval. A virtual post office box. Please remember to share your Ozone Address with your friends as well as at least one SmokeStack.
As a chat server, which can handle your encrypted packets, you can use either a Spot-On Server (c++) or - on a mobile (Android) device now: SmokeStack. Smoke App with SmokeStack (Server) seems to be one of the worldwide first projects with an open source mobile encrypting chat server. An own decentral and easy to set up chat server for every family and every school!
With the latest release SmokeStack is also a Key-Server: Even if you are offline, and your firend enters your the SIpHash Chat ID, Smokestack returns your public encryption key. This method reduces the fake entries of many searchable PGP-Email-Servers, as only your verified client submitts the credentials to a SmokeStack Key server.
Smokestack is open source (Java) and a mobile chat server for Android. You can set it easily up on your mobile phone, your tablet or an Android Box-PC for your TV-station, which are cheap to buy and constantly powered (e.g. octa-core boxes with S912 processors).
Bring your own crypto server on Android in your pocket! #BYOCS.
Smoke allows to support multiple devices at the same time. Just copy your key to another device and you also receive the messages there. Have you experienced that Whatsapp in the Browser is defunctional, if your mobile device is not connected to the internet? Or that your XMPP app works only on several servers, if your server admin does not use a special software extension with dedicated modules? Smokestack server is easy to set up on Android and provides you messages for any Android device you want to use.
As said: Smoke is an application for mobile devices. Because it is written in Java, it addresses many operating systems, the compile and builds are currently provided and adjusted for Android starting with the Android 4.4. KitKat version and up. This covers over 90 % of the current market share devices of Android.
Also File Transfer is possible, e.g. pictures in the 1:1 chat window or share files over the Steam Protocol in the Share Tab. Steam allows to swarm files transfered even among friends, who have not exchanged keys, and though the transfer is secure end-to-end encrypted between friends, who have shared a key. Explore this protocol, which creates seccurity for friends, who have exchanged keys and also peers, who are not sharing a key with a friend, but are also able to swarm the transfer, in case a friend have sent them the file. Furthermore the File can be sent over the Stream Protocol to SSH Clients, without having Smoke installed. That is interoperability with zero dependencies.
The screenshot shows how easy it is to log with your password into your SmokeApp.
Here are some of the salient points regarding the Smoke usage process:
Here are a few screenshots (Chat Window, Settings, Neighbor Table, Friendslist). Feel free to improve the GUI within your forked code contributions. More Screenshots will follow.
The Smoke decentralized chat application is an early functional release. If you'd like to help in improving/testing the network or graphical user interface, then please join with requests and offers over Github.