The latest articles on DEV Community by AegisLink (@aegislink). https://dev.to/aegislink https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.us-east-2.amazonaws.com%2Fuploads%2Forganization%2Fprofile_image%2F13733%2F6a1efae5-b2bc-4110-bfe3-4b5a7058dc56.png https://dev.to/aegislink en Starling javier gabino rodriguez Sun, 21 Jun 2026 09:02:37 +0000 https://dev.to/aegislink/building-a-messenger-that-hides-metadata-not-just-messages-1f99 https://dev.to/aegislink/building-a-messenger-that-hides-metadata-not-just-messages-1f99 <p>Most "encrypted" apps protect <em>what</em> you say. They do far less about <em>who you<br> talk to, when, and how often</em> — the metadata. And metadata is often the part<br> that actually gets people in trouble.</p> <p>I'm building <strong>AegisLink</strong>, an open-source end-to-end encrypted messenger, with<br> that as the central obsession. This is the first post in a build-in-public<br> series. Everything here is <strong>pre-release and has had no independent audit yet</strong>,<br> so treat it as claims to verify — not promises. That's exactly why the code and<br> protocol are public.</p> <h2> The threat I actually care about </h2> <p>End-to-end encryption is table stakes now. The interesting question is what the<br> <em>server</em> learns even when it can't read your messages:</p> <ul> <li>who is talking to whom</li> <li>when, and how often</li> <li>from which IP, on which device</li> <li>message and attachment sizes</li> </ul> <p>A server that logs those can reconstruct your entire social graph without ever<br> decrypting a word. So the design rule for AegisLink's relay is simple: <strong>know as<br> little as possible.</strong></p> <h2> How that translates into code </h2> <ul> <li> <strong>No account.</strong> No email, no phone, no name. Identity is generated on-device (Ed25519 + X25519); your address is a random ID.</li> <li> <strong>Dumb relay.</strong> It forwards opaque ciphertext and keeps no logs of who messages whom — no IPs, no access timestamps, no message sizes.</li> <li> <strong>Modern crypto.</strong> Double Ratchet + X3DH, with a hybrid post-quantum layer (PQXDH). Private keys never leave the device.</li> <li> <strong>Sealed signaling for calls.</strong> WebRTC SDP/ICE is sealed with NaCl box before it reaches the relay, so the server never sees IPs or DTLS fingerprints.</li> <li> <strong>Encrypted at rest.</strong> The local DB is encrypted (SQLCipher); backups use an Argon2id-derived key only the user holds.</li> </ul> <h2> What's NOT done yet </h2> <p>Being honest is the whole point of doing this in the open:</p> <ul> <li> <strong>Transport-level sealed-sender</strong> — hiding the sender from the relay <em>process itself</em> — is in active development, not shipped.</li> <li> <strong>No third-party audit</strong> has happened. The protocol and threat model are in the repo precisely so people who know more than me can check the work.</li> </ul> <h2> Follow along / tear it apart </h2> <p>Code, protocol docs and threat model:<br> <a href="https://github.com/gabinotech22-cmyk/AegisLink" rel="noopener noreferrer">https://github.com/gabinotech22-cmyk/AegisLink</a></p> <p>Next post I'll go deep on one piece — probably the X3DH/PQXDH handshake. If<br> there's something you'd rather I break down, tell me in the comments.</p> buildinpublic opensource privacy security