Skip to content
NakitteCarbon

Secure Comms

Internal messaging, end-to-end encrypted to the members shown in your conversation, on the IETF's Messaging Layer Security standard (RFC 9420). Our server is a blind relay: it forwards sealed ciphertext it cannot open and never holds a private key.

Today the relay is running and the client is still in build — so treat everything below as the server half of the promise, not the whole of it.

Design-partner stage. The server — the blind relay and the device directory — is built, tested and running; the client is not yet built, so nothing is encrypted end-to-end today (see what is not built yet). We are looking for the first security-conscious companies to shape it around how they actually work. This is a distinct service from Documents — Documents keeps the records you must retain and prove; Secure Comms will carry the day-to-day conversations, encrypted so that only the people shown in each conversation can read them.

What "end-to-end encrypted" means here — precisely

We build on MLS (Messaging Layer Security), IETF RFC 9420 — the open group-messaging standard the IETF ratified. Encryption, key agreement and group membership all run in the client; the message you type is sealed on your device and only ever unsealed on the devices of the members shown in your conversation. It is not Signal: no Signal relationship, and no Signal code.

We do not write our own cryptography. The MLS protocol runs in the client through mls-rs, an independent, permissively licensed implementation of the standard. What we build is the server side of MLS as the RFC defines it — the Delivery Service and the Authentication Service (RFC 9750) — plus the glue. A vendor who tells you they wrote their own protocol is telling you something alarming.

The consequence for the server is deliberate and worth stating plainly to a security reviewer:

We ship the classical MLS cipher suite (MLS_128_DHKEMX25519_AES128GCM_SHA256_Ed25519, RFC 9420 §17.1). We do not claim post-quantum security today. The cipher-suite column is a value, not a schema change, so when the MLS working group standardises a post-quantum suite we adopt it as an added suite rather than a migration.

The building blocks that exist today

A device directory you can see and revoke

One-time key packages, claimed exactly once

A blind delivery relay that can't fork your group

Tenant isolation and an audit trail a CISO can check

What is not built yet — read this before you evaluate us

The server described above is built, tested and running. The client is not. Because every byte of encryption happens on the device, that means nothing is encrypted end-to-end today: what exists is a relay that is structurally incapable of reading messages, waiting for the client that will send it sealed ones. We would rather you learn that here than in a pilot.

The browser clientComing soon — the reach tier: nothing to install, so everyone in the company can be on it. Note the honest limit even once it lands: a web page re-delivers its own cryptography from our origin on every visit, so you are trusting us on each load rather than trusting a binary you verified once.

The signed desktop clientComing soon — the strong-assurance tier. A verifiable, code-signed binary is the only honest way to raise the bar on client-side key handling and supply-chain trust. The unqualified end-to-end-encryption promise belongs to this tier.

Coming soon

See also

Frequently asked questions

What is Secure Comms?
End-to-end encrypted internal messaging for your company on the IETF's Messaging Layer Security standard (RFC 9420) — a blind relay that stores only sealed ciphertext, never a key or a plaintext, with encrypted voice and video conferencing on the roadmap.
Who is Secure Comms for?
Secure Comms is for Security- and KVKK-conscious companies that want their internal communications encrypted end-to-end — design-partner stage, seeking the first.
Is Secure Comms available today?
Secure Comms is at the design-partner stage: built on open standards and seeking its first design partner, not yet generally available.