Session (software)
Developer(s) | The Oxen Project |
---|---|
Initial release | February 2020 |
Repository | github |
Operating system | |
Type | Instant messaging |
License | BSD-3-Clause MIT GPL-3.0 |
Website | getsession |
Session is a cross-platform end-to-end encrypted instant messaging application emphasizing user confidentiality and anonymity. Developed by The Oxen Project under the non-profit Oxen Privacy Tech Foundation, it employs a blockchain-based decentralized network for transmission. Users can send one-to-one and group messages, including various media types such as files, voice notes, images, and videos.[1]
Session provides applications for various platforms, such as macOS, Windows, and Linux, along with mobile clients available on both iOS and Android.
Features
Session does not require a telephone number or email address for account creation. Instead, it utilizes a randomly generated 66-digit alphanumeric number for user identification. Communication between users, including messages, voice clips, photos, and files, is end-to-end encrypted using the Session protocol. Session uses the Loki blockchain network for transmissions. In 2021, an independent review by the third-party Quarkslab verified these claims.[2][3][4][5]
Development
Session started as a fork of another messenger, Signal, aiming to build upon its foundation. However, concerns about the centralized structure of Signal Protocol and potential metadata collection led the team to deviate and create their own protocol, called "Session Protocol". This approach prioritized increased anonymity and decentralization. During development, the team encountered various challenges, leading to the necessity of abandoning or modifying many features.[4][6]
Limitations
Session lacks support for two-factor authentication, and its underlying protocols are still in a developmental phase. Following the migration from the Signal Protocol to its internally developed protocol, Perfect Forward Secrecy and deniable authentication were not implemented.[7]
References
- ^ Bhattacharjee, Shomik Sen (October 8, 2021). "Session Is a Blockchain-Based Private Messenger That Uses Decentralised Server Nodes To Ensure Anonymity". Gadgets 360. Retrieved June 18, 2023.
- ^ Ankush, Das (February 10, 2022). "8 Reasons to Try Session as a Private Messaging App". MakeUseOf. Retrieved December 8, 2022.
- ^ "New WhatsApp Alternative "Session" Works Without Your Phone Number". Fossbytes. March 9, 2020. Archived from the original on May 31, 2023. Retrieved July 31, 2023.
{{cite web}}
: CS1 maint: bot: original URL status unknown (link) - ^ a b "Session Messenger Review – Best Secure Messaging App?". RestorePrivacy. Retrieved October 11, 2021.
- ^ Oxen Session Audit Technical Report (PDF). Quarkslab SAS. 2021.
- ^ Florence, Eric (January 6, 2022). "Session Messenger Review". SecurityTech. Retrieved August 3, 2023.
- ^ "The Session Protocol: What's changing — and why - Session Private Messenger". Session. December 16, 2020. Retrieved August 10, 2023.
External links
- Cross-platform software
- Cryptographic software
- Free and open-source Android software
- Free instant messaging clients
- Free security software
- Free software programmed in Java (programming language)
- Instant messaging clients programmed in Java
- Internet privacy software
- IOS software
- Linux software
- MacOS software
- Windows software
- Secure communication
- Blockchain entities
- Instant messaging clients