<?xml version="1.0" encoding="UTF-8"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
    <title>The VPuNk REpoRt!! - infosec</title>
    <subtitle>All things digital rights</subtitle>
    <link rel="self" type="application/atom+xml" href="https://vpunk.sh/tags/infosec/atom.xml"/>
    <link rel="alternate" type="text/html" href="https://vpunk.sh"/>
    <generator uri="https://www.getzola.org/">Zola</generator>
    <updated>2026-05-12T00:00:00+00:00</updated>
    <id>https://vpunk.sh/tags/infosec/atom.xml</id>
    <entry xml:lang="en">
        <title>Why Encrypted Messaging Matters, and How to Build It: Introduction</title>
        <published>2026-05-12T00:00:00+00:00</published>
        <updated>2026-05-12T00:00:00+00:00</updated>
        
        <author>
          <name>
            
              blockhackers.io
            
          </name>
        </author>
        
        <link rel="alternate" type="text/html" href="https://vpunk.sh/blog/encrypted-communications/"/>
        <id>https://vpunk.sh/blog/encrypted-communications/</id>
        
        <content type="html" xml:base="https://vpunk.sh/blog/encrypted-communications/">&lt;h1 id=&quot;encrypted-communication-series-introduction&quot;&gt;Encrypted Communication Series - Introduction&lt;a class=&quot;post-anchor&quot; href=&quot;#encrypted-communication-series-introduction&quot; aria-label=&quot;Anchor link for: encrypted-communication-series-introduction&quot;&gt;&lt;span aria-hidden=&quot;true&quot;&gt;#&lt;&#x2F;span&gt;&lt;&#x2F;a&gt;
&lt;&#x2F;h1&gt;
&lt;p&gt;When two people speak in a sealed letter, or in a room with the door closed, the assumption is simple: nobody else gets to listen. Encryption is the digital expression of that same idea. It is the only mechanism that lets the modern equivalents of those conversations, whether text messages, video calls, or file transfers, happen without an audience.&lt;&#x2F;p&gt;
&lt;p&gt;This article opens a series on building a secure messaging system from scratch. Before getting into the engineering, it is worth being honest about why this is worth doing at all.&lt;&#x2F;p&gt;
&lt;h2 id=&quot;why-encryption-matters&quot;&gt;Why encryption matters&lt;a class=&quot;post-anchor&quot; href=&quot;#why-encryption-matters&quot; aria-label=&quot;Anchor link for: why-encryption-matters&quot;&gt;&lt;span aria-hidden=&quot;true&quot;&gt;#&lt;&#x2F;span&gt;&lt;&#x2F;a&gt;
&lt;&#x2F;h2&gt;
&lt;p&gt;The case for strong, end-to-end encryption is sometimes framed as a niche concern for cypherpunks and criminals. It is neither. The argument runs along several reinforcing lines.&lt;&#x2F;p&gt;
&lt;p&gt;&lt;strong&gt;Privacy is autonomy.&lt;&#x2F;strong&gt; Without it, every conversation is potentially surveilled, and the basic freedom to think out loud, to disagree, to be wrong in private before being right in public, erodes. People who know they are watched think and speak differently. That chilling effect shrinks the range of acceptable thought long before any law is passed.&lt;&#x2F;p&gt;
&lt;p&gt;&lt;strong&gt;It protects the people who need it most.&lt;&#x2F;strong&gt; Journalists shielding sources, activists organising under hostile governments, abuse survivors leaving partners, whistleblowers exposing wrongdoing, LGBTQ+ people in regions where their existence is criminalised, lawyers speaking with clients, doctors with patients, humanitarian workers in conflict zones. For each of these groups, encryption is not a convenience. It is what keeps them alive, employed, free, or out of court.&lt;&#x2F;p&gt;
&lt;p&gt;&lt;strong&gt;It safeguards democracy.&lt;&#x2F;strong&gt; Free political organising, dissent, and an independent press all require communication the state cannot monitor at will. &quot;Speaking truth to power&quot; is a hollow phrase if power can read every draft.&lt;&#x2F;p&gt;
&lt;p&gt;&lt;strong&gt;It is the substrate of digital security.&lt;&#x2F;strong&gt; Banking, medical records, business secrets, infrastructure control systems, and personal data all rely on the same cryptographic primitives. There is no toolkit that protects hospitals and banks while conveniently leaving &quot;bad guys&quot; exposed; the maths is the same. Weakening encryption weakens everything that runs on it.&lt;&#x2F;p&gt;
&lt;p&gt;&lt;strong&gt;There is no backdoor for the good guys only.&lt;&#x2F;strong&gt; Any deliberate vulnerability built for one government will, with time and near certainty, be found and used by criminals, hostile states, and corporate spies. This is not hypothetical. It has happened repeatedly, from telecoms wiretap systems to lawful-access key escrow schemes.&lt;&#x2F;p&gt;
&lt;p&gt;&lt;strong&gt;It corrects a power asymmetry.&lt;&#x2F;strong&gt; Without encryption, ordinary people are legible to governments and corporations while those institutions remain opaque to them. Encryption does not erase the asymmetry, but it narrows it.&lt;&#x2F;p&gt;
&lt;p&gt;&lt;strong&gt;It extends rights we already have.&lt;&#x2F;strong&gt; Sealed letters, private conversations, confidential legal counsel, the secrecy of the ballot, the privacy of the confessional: these are long-recognised entitlements in most legal traditions. Encryption is simply their digital form.&lt;&#x2F;p&gt;
&lt;p&gt;&lt;strong&gt;It has international recognition.&lt;&#x2F;strong&gt; Successive UN special rapporteurs on freedom of expression have argued that encryption and anonymity are essential preconditions for the rights to opinion, expression, and privacy, rather than optional add-ons.&lt;&#x2F;p&gt;
&lt;p&gt;&lt;strong&gt;Leaks are irreversible.&lt;&#x2F;strong&gt; Once a message, photo, conversation, or medical record is exposed, no apology, lawsuit, or policy change retrieves it. Encryption is the only durable protection, because it prevents the exposure in the first place.&lt;&#x2F;p&gt;
&lt;p&gt;Taken together, encryption is less a feature of messaging apps than a precondition for civil society in a networked world. The rest of this series treats it that way.&lt;&#x2F;p&gt;
&lt;h2 id=&quot;what-this-series-covers&quot;&gt;What this series covers&lt;a class=&quot;post-anchor&quot; href=&quot;#what-this-series-covers&quot; aria-label=&quot;Anchor link for: what-this-series-covers&quot;&gt;&lt;span aria-hidden=&quot;true&quot;&gt;#&lt;&#x2F;span&gt;&lt;&#x2F;a&gt;
&lt;&#x2F;h2&gt;
&lt;p&gt;Building a system that lives up to those properties takes more than picking a cipher. Real-world secure messaging is a stack of design decisions, each addressing a specific class of attacker or failure mode. Over the next articles we will work through that stack:&lt;&#x2F;p&gt;
&lt;ol&gt;
&lt;li&gt;&lt;strong&gt;Structure: Sender → Relay → Receiver.&lt;&#x2F;strong&gt; The basic three-party architecture, and why a relay sits in the middle rather than the parties talking directly.&lt;&#x2F;li&gt;
&lt;li&gt;&lt;strong&gt;Authenticated identities.&lt;&#x2F;strong&gt; How each party proves who they are, without leaking that proof to the world.&lt;&#x2F;li&gt;
&lt;li&gt;&lt;strong&gt;Encryption to a static key with HPKE.&lt;&#x2F;strong&gt; Using Hybrid Public Key Encryption as the baseline for sending a message to a known recipient.&lt;&#x2F;li&gt;
&lt;li&gt;&lt;strong&gt;Sealing the sender.&lt;&#x2F;strong&gt; Hiding metadata about &lt;em&gt;who&lt;&#x2F;em&gt; sent a message, not just &lt;em&gt;what&lt;&#x2F;em&gt; it says.&lt;&#x2F;li&gt;
&lt;li&gt;&lt;strong&gt;Retrieval unlinkability.&lt;&#x2F;strong&gt; Making sure that fetching messages from the relay cannot be tied back to an identity over time.&lt;&#x2F;li&gt;
&lt;li&gt;&lt;strong&gt;Forward secrecy via a symmetric ratchet.&lt;&#x2F;strong&gt; So that a key compromise tomorrow cannot decrypt today&#x27;s messages.&lt;&#x2F;li&gt;
&lt;li&gt;&lt;strong&gt;Post-compromise security via a Diffie–Hellman ratchet.&lt;&#x2F;strong&gt; So that even after a compromise, the channel can heal itself and recover secrecy going forward.&lt;&#x2F;li&gt;
&lt;&#x2F;ol&gt;
&lt;p&gt;This first article concerns the relay: the piece of infrastructure that sits between sender and receiver, accepts ciphertext, holds it, and hands it over on request, knowing as little as possible in the process. The goal, by the end of the series, is a system in which the relay sees almost nothing, identities are confirmed but not exposed, and a momentary compromise does not unravel the whole history of a conversation.&lt;&#x2F;p&gt;
</content>
        
    </entry>
</feed>
