Secure Messaging by The Guardian is a tool designed for journalist-source confidentiality, ensuring that the act of messaging remains hidden from potential scrutiny. It utilizes an open-source technology called CoverDrop, co-developed with researchers from the University of Cambridge. The system protects sources even under smartphone compromise by generating false traffic. CoverDrop consists of several components including mobile app integration, a cloud-based API, on-premises services, and a desktop application for journalists. A key element, the CoverNode, ensures anonymity through a mix node approach.
The technology behind Secure Messaging conceals the fact that messaging is taking place at all by making the communication indistinguishable from other data sent to and from the app by our millions of regular users.
The open source project achieves strong plausible deniability by generating bait traffic through the routine activity of existing users of The Guardian's mobile app, safeguarding sources even if their smartphones are seized or compromised.
The goal of the media organization is to allow whistleblowers to contact journalists more securely, relying on a confidential, open source, and anonymous messaging technology.
The CoverNode is implemented as a Rust application and acts as a mix node to guarantee the anonymity of sources towards journalists and external adversaries.
Collection
[
|
...
]