session-foundation / session-android

A private messenger for Android.
https://getsession.org
GNU General Public License v3.0
32 stars 4 forks source link

[Feature] Steganography techniques #100

Open Blackbam opened 11 months ago

Blackbam commented 11 months ago

Is there an existing request for feature?

What feature would you like?

According to various articles popping up in the news more and more surveilance done e.g. by state actors is based on surveilance of network communication activity and also IOS and Android. Means they do not decrypt messages but find out who is connected to who by checking message timestamp and size.

If someone is able to analyze huge parts of network traffic or mutiple devices it is possible to find out who might be connected to whom despite all encryption.

An approach to fight this is Steganography. Send random shit over the network to arbitrary participants of thr network but the application is able to understand what is shit and what is a real message. Exact implementation is yet to be defined. Do you think it is worth to implement such a thing in order to achieve more secret communication?

Anything else?

No response

0x330a commented 10 months ago

The onion routing via multiple service nodes probably aids in preventing large network analysis as you will only see the external IP connecting to the first node, and that node among others will receive and forward their own requests to several more hops, at least compared to if the clients contacted only a single final destination / target node which isn't the case here.

Blackbam commented 10 months ago

Would still keep it as an idea as there is more and more information about large network analysis leading to results and identification.