Production Release — All Security Fixes Applied

Download MumbleChat

Military-grade encrypted messaging. Available for Android and Chrome. Real X25519 key exchange, Ed25519 signatures, SQLCipher local storage.

🤖 Android 🌐 Chrome Extension 🔐 E2E Encrypted
🤖

Android App

RamaPay v4.8.0

The full-featured Android client with BouncyCastle X25519, Ed25519 signatures, SQLCipher database encryption, and wallet-based identity.

X25519 ECDH Ed25519 SQLCipher AES-256-GCM
⬇️ Download APK (v4.8.0)

Android 8.0+ • ~25MB • Direct APK Install

🌐

Chrome Extension

v1.0.2

Browser-based client using Web Crypto API with P-256 key exchange, AES-256-GCM encryption, and MetaMask wallet integration.

Web Crypto P-256 MetaMask AES-256-GCM
⬇️ Download Extension (v1.0.2)

Chrome 88+ • Developer Mode • Manual Install

Security Shield

Military-Grade Security Stack

Every message is encrypted end-to-end with real X25519 Diffie-Hellman key exchange (BouncyCastle on Android, Web Crypto on Chrome). Your private keys never leave your device — relay nodes are just encrypted byte forwarders.

🔑 X25519 ECDH ✍️ Ed25519 Signatures 🗄️ SQLCipher AES-256 🚫 Zero Knowledge Relay

What's New in v4.8.0

All 15+ security audit items addressed. Hardened from the ground up.

🔐

Real X25519 ECDH

BouncyCastle-based X25519 key exchange replaces placeholder. Full Curve25519 Diffie-Hellman.

✍️

Ed25519 Signatures

Real Ed25519 message authentication. Cryptographic proof of sender identity.

🗃️

SQLCipher Storage

All local data encrypted at rest with SQLCipher AES-256. Database key derived from wallet.

🛡️

Wallet Auth

Self-signed wallet authentication replaces hub-based auth. Your keys, your identity.

Rate Limiting

10 msg/s rate limit with queue caps (200/user, 50K total) prevents relay abuse.

📦

256KB Max Payload

Enforced message size limit prevents memory attacks on relay nodes.

🌲

No Logging in Release

Timber ReleaseTree strips all debug logs in production builds. Zero data leakage.

⛓️

V10 Contracts

ProofVerifier on-chain relay proofs with commit-verify pattern and anti-gaming measures.

Installation Guide

📱 Android Installation

1
Download APK — Tap the download button above
2
Enable Unknown Sources — Settings → Security → Unknown Sources
3
Install APK — Open the downloaded file and install
4
Connect Wallet — Import or create a Ramestta wallet
5
Register On-Chain — Your identity is stored on-chain, wallet-signed

🌐 Chrome Extension Installation

1
Download ZIP — Tap the download button above
2
Extract — Unzip to a dedicated folder
3
Open Extensions — Navigate to chrome://extensions
4
Developer Mode ON — Toggle in the top-right
5
Load Unpacked — Point to the extracted folder

Platform Comparison

Feature 🤖 Android (RamaPay) 🌐 Chrome Extension
Key Exchange ✅ X25519 (BouncyCastle) ✅ P-256 (Web Crypto)
Signatures ✅ Ed25519 (BouncyCastle) ✅ ECDSA P-256
Encryption ✅ AES-256-GCM ✅ AES-256-GCM
Local Storage ✅ SQLCipher (AES-256) ⚠️ Browser Storage
Wallet ✅ Built-in Wallet ✅ MetaMask / Injected
Relay Node ✅ Can run relay ❌ Client only
Notifications ✅ Push + Background ✅ Extension Popup
MCT Mining ✅ Full Mining Support ❌ Not supported

System Requirements

🤖 Android

  • Android 8.0 (Oreo) or higher
  • ~50MB storage space
  • Internet connection
  • Optional: Ramestta wallet for on-chain identity

🌐 Chrome

  • Chrome 88+ or Chromium-based browser
  • ~5MB extension size
  • MetaMask or compatible Web3 wallet
  • Developer mode enabled

Start Chatting Securely

Download, connect your wallet, and start sending end-to-end encrypted messages. No phone number needed.

⬇️ Android APK 💬 Web Chat