SecureBitChat/securebit-chat
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
Files
959e137171b8a8da07edadc9c033130ceec3d738
securebit-chat/SECURITY_DISCLAIMER.md
lockbitchat 434301fe6f 🐛 Fix PWA install prompt showing after installation 
Fixed critical bug where PWA install message continued showing after app installation

-  Enhanced PWA installation status detection
-  Fixed install prompt logic to hide after installation
-  Improved Service Worker update handling
-  Added proper installation state management
-  Enhanced iOS Safari PWA detection
-  Added installation preferences storage

- Added installationChecked flag for better state management
- Enhanced checkInstallationStatus() method with multiple detection methods
- Improved shouldShowPrompt() logic to prevent showing after installation
- Added periodic installation monitoring for iOS devices
- Enhanced Service Worker activation event handling
- Added PWAUtils.checkInstallationStatus() utility method

- public/src/pwa/install-prompt.js (major refactor)
- public/index.html (PWA logic improvements)
- public/sw.js (Service Worker enhancements)

- PWA install message no longer shows after successful installation
- Only update notifications are shown for installed PWAs
- Proper distinction between install prompts and update notifications

Version: Enhanced Security Edition v4.01.413
2025-08-23 17:21:32 -04:00

208 lines
6.9 KiB
Markdown
Raw Blame History

# Security Disclaimer and Terms of Use
## 🔒 SecureBit.chat Enhanced Security Edition v4.01.413
### Important Legal Notice
**READ THIS DISCLAIMER CAREFULLY BEFORE USING SECUREBIT.CHAT SOFTWARE**
---
## 📋 Overview
SecureBit.chat is an open-source, peer-to-peer encrypted messaging application designed to support **freedom of speech** and **privacy rights**. This software implements military-grade cryptography and is provided as-is for educational, research, and legitimate communication purposes.
---
## ⚖️ Legal Disclaimer
### Developer Liability
**THE DEVELOPER(S) OF SECUREBIT.CHAT ASSUME NO RESPONSIBILITY OR LIABILITY FOR:**
- Any misuse, illegal use, or criminal activities conducted using this software
- Compliance with local, national, or international laws and regulations
- Any damages, losses, or consequences resulting from the use of this software
- The security or privacy of communications in jurisdictions where encryption is restricted
- Any vulnerability, security flaw, or compromise that may occur despite our security measures
### User Responsibility
**BY USING SECUREBIT.CHAT, YOU ACKNOWLEDGE AND AGREE THAT:**
1. **Full Legal Responsibility**: You bear complete and sole responsibility for how you use this software
2. **Compliance Obligation**: You must ensure your use complies with all applicable laws in your jurisdiction
3. **Risk Acceptance**: You understand and accept all risks associated with using encrypted communication software
4. **No Warranty**: This software is provided "AS IS" without any warranties, express or implied
---
## 🌍 Jurisdictional Considerations
### Encryption Laws Vary Globally
- **Some countries restrict or prohibit** the use of strong encryption
- **Export controls** may apply in certain jurisdictions
- **Corporate/government networks** may have policies against encrypted communications
- **Users must verify** local laws before using this software
### High-Risk Jurisdictions
**Exercise extreme caution** in countries with:
- Restrictions on encrypted communications
- Surveillance laws requiring backdoors
- Penalties for using VPN/encryption software
- Authoritarian internet controls
---
## 🎯 Intended Use Cases
### ✅ Legitimate Uses (Encouraged)
- **Journalism**: Protecting sources and whistleblowers
- **Human Rights**: Organizing and advocacy in oppressive regimes
- **Business**: Corporate communications requiring confidentiality
- **Personal Privacy**: Private communications between individuals
- **Research**: Academic study of cryptographic protocols
- **Education**: Learning about secure communication systems
### ❌ Prohibited Uses (Illegal/Unethical)
- Any illegal activities under applicable law
- Criminal conspiracies or planning illegal acts
- Harassment, threats, or abuse of others
- Circumventing legitimate law enforcement (where legally required)
- Distribution of illegal content
- Financial crimes or fraud
---
## 🔐 Security Limitations
### No Absolute Security
**UNDERSTAND THAT:**
- No cryptographic system is 100% unbreakable
- Implementation bugs may exist despite best efforts
- Social engineering and endpoint security remain vulnerabilities
- Quantum computing may eventually threaten current encryption
- Traffic analysis may reveal communication patterns
### User Security Responsibilities
**YOU MUST:**
- Keep your devices secure and updated
- Use strong, unique passwords
- Verify security codes through out-of-band channels
- Understand the risks of your communication environment
- Follow operational security (OPSEC) best practices
---
## 🏛️ Freedom of Speech Support
### Our Mission
SecureBit.chat is developed to support:
- **Article 19** of the Universal Declaration of Human Rights
- **Freedom of expression** and **right to privacy**
- **Resistance to censorship** and mass surveillance
- **Protection of journalists, activists, and dissidents**
### Ethical Use Commitment
We believe privacy and free speech are fundamental human rights, but:
- These rights come with responsibilities
- Freedom of speech does not include freedom from consequences
- Users must respect the rights and safety of others
- Illegal activity is never justified, regardless of privacy tools used
---
## 📊 Technical Security Information
### Current Implementation
- **ECDH P-384** key exchange
- **AES-GCM 256-bit** encryption
- **ECDSA P-384** digital signatures
- **Perfect Forward Secrecy** with key rotation
- **MITM protection** via out-of-band verification
- **Zero server architecture** (pure P2P)
### Known Limitations
- WebRTC fingerprinting possibilities
- Browser-based implementation constraints
- Dependency on Web Crypto API security
- No protection against compromised endpoints
- Traffic analysis potential despite encryption
---
## 🔄 Future Development
### Post-Quantum Roadmap
- **v5.0**: CRYSTALS-Kyber/Dilithium implementation
- **Long-term**: Resistance to quantum cryptanalysis
- **Ongoing**: Security audits and improvements
---
## 📞 Contact and Reporting
### Security Issues
- **Responsible disclosure**: Email security issues to the development team
- **CVE reporting**: We participate in responsible vulnerability disclosure
- **Bug bounty**: Consider implementing for critical security findings
### Legal Concerns
- **Law enforcement**: Contact appropriate legal authorities in your jurisdiction
- **Abuse reports**: Report illegal use to relevant authorities
- **Compliance questions**: Consult with legal counsel
---
## 📜 License and Terms
### Open Source License
SecureBit.chat is released under the **MIT License**, providing:
- Freedom to use, modify, and distribute
- No warranty or liability guarantees
- Full source code transparency
- Right to audit security implementation
### Terms Acceptance
**By downloading, installing, or using SecureBit.chat, you acknowledge:**
1. You have read and understood this disclaimer
2. You accept full responsibility for your use of the software
3. You agree to comply with all applicable laws
4. You understand the security limitations and risks
5. You will not hold the developers liable for any consequences
---
## ⚠️ Final Warning
**SECUREBIT.CHAT IS A POWERFUL TOOL FOR PRIVACY AND FREE SPEECH**
With great power comes great responsibility. Use this software ethically, legally, and with full understanding of the risks and responsibilities involved.
**Remember**: The strongest encryption cannot protect against poor operational security, compromised endpoints, or illegal activities that attract law enforcement attention.
---
## 🛡️ Declaration of Intent
This software is created to:
- **Protect human rights** and fundamental freedoms
- **Support legitimate privacy** needs in an increasingly surveilled world
- **Advance the field** of secure communications
- **Educate users** about cryptography and privacy
**It is NOT intended to facilitate illegal activities or harm others.**
---
*Last Updated: 08.07.2025*
*Version: Enhanced Security Edition v4.01.413*
**USE AT YOUR OWN RISK AND RESPONSIBILITY**
Reference in New Issue View Git Blame Copy Permalink