End-to-end encryption consists of securing data between two users or end points using a private and public key for each user or end point. The data is encrypted on the end devices and remains encrypted everywhere its sent and stored until the authorised recipient opens the message and decrypts it on his or her device. Neither Vox Messenger nor any of the networks, servers, databases, or third party services will see anything but scrambled data passing through.


  • We cannot and do not read your messages (unlike WhatsApp)
  • We do not use ads or retargetting (unlike Facebook Messenger)
  • We do not sell your user data (unlike Facebook)
  • We use an open source crypto library (unlike Telegram)
  • We support access from multiple phones (unlike Signal)
  • We do not force you to give us your contact list (unlike Signal)


The underlying encryption is provided by Virgil Security, a platform to bring powerful cryptography to every application. Built by a world-class team of cryptographers, our encryption is powered by a state-of-the-art open source crypto library, complete with elliptic-curve keys 200x harder to break than RSA. e3Kit is a client-side SDK that simplifies work with Virgil services and presents the easiest way to add full end-to-end encryption (E2EE) security to your digital solutions. e3Kit interacts with Cards Service, Keyknox Service and Pythia Service and supports multi-device access and group chat features.

Links to individual algorithms and more details on the underlying open source crypto library can be found under “SDKs and Tools” -

Key Generation

  • Cryptographically strong random to generate key
  • ED25519 to sign card

Encryption and Signing

  • Cryptographically strong random to generate symmetric key
  • ED25519 to sign data
  • AES256 CBC for key wrapping
  • AES256 GCM to encrypt data
  • Curve25519 to generate shared secret
  • KDF2 to derive keys

Decryption and Verification

  • ED25519 to verify signature
  • AES256 CBC for key wrapping
  • AES256 GCM to decrypt data
  • Curve25519 to generate shared secret
  • KDF2 to derive keys

Backup Private Key

  • BLS12-381 (Pythia) + everything from Encryption and Signing

Restore Private Key

  • BLS12-381 (Pythia) + everything from Decryption and Verification

Cryptography Concepts

Cryptography prior to the modern age was effectively synonymous with encryption, the conversion of information from a readable state to apparent nonsense. The originator of an encrypted message shares the decoding technique only with intended recipients to preclude access from adversaries. The cryptography literature often uses the names Alice ("A") for the sender, Bob ("B") for the intended recipient, and Eve ("eavesdropper") for the adversary. Since the development of rotor cipher machines in World War I and the advent of computers in World War II, the methods used to carry out cryptology have become increasingly complex and its application more widespread.

Encryption and Decryption

In cryptography, encryption is the process of encoding a message or information in such a way that only authorised parties can access it and those who are not authorised cannot. Encryption does not itself prevent interference, but denies the intelligible content to a would-be interceptor. In an encryption scheme, the intended information or message, referred to as plaintext, is encrypted using an encryption algorithm – a cipher – generating ciphertext that can be read only if decrypted. An encryption scheme usually uses a pseudo-random encryption key generated by an algorithm. It is in principle possible to decrypt the message without possessing the key, but, for a well-designed encryption scheme, considerable computational resources and skills are required. An authorised recipient can easily decrypt the message with the key provided by the originator to recipients but not to unauthorised users.

Symmetric Encryption

Symmetric-key encryption[a] is when the same cryptographic key is used for both encryption of plaintext and decryption of ciphertext. The endpoints will either have duplicates of the key, or they will pass the key back and forth. The keys, in practice, represent a shared secret between two or more parties that can be used to maintain a private information link. This requirement that both parties have access to the secret key is one of the main drawbacks of symmetric key encryption, in comparison to public-key encryption (also known as asymmetric key encryption), because the key must somehow be shared secretly.

Asymmetric Encryption

Public-key cryptography, or asymmetric cryptography, is a cryptographic system that uses pairs of two distinct keys: a public key which may be disseminated widely, and a private key which is known only to the owner. The generation of such keys depends on cryptographic algorithms based on mathematical problems to produce one-way functions. Effective security requires keeping the private key private, but the public key can be openly distributed without compromising security.[1] In such a system, any person can encrypt a message using the receiver's public key, but that encrypted message can only be decrypted with the receiver's private key.

Public Keys

In an asymmetric encryption system, public keys can be widely and openly disseminated within a network of users. A public key is like a mailing address in that each user’s address can be seen publicly and senders will look up a user’s address to direct a message to a certain recipient. After looking up the public key, the sender scrambles the plaintext into ciphertext (or “encrypts” the message) in such a way that only the recipient’s corresponding private key can unscramble the ciphertext back into plaintext (or “decrypt” the message). In a chat application, when Alice wants to send 'Hello' to Bob, she encrypts her plaintext message with Bob's public key and sends it to him. To make asymmetric encryption system work, there has to be a central organising party or system to make the public keys available to all participants, and ensure that the public keys and private keys work together, like a PKI. With Virgil Security, the Cards Service is this central organising system that to securely stores, catalogues and distributes the public keys of end users.

Private Keys

In an asymmetric encryption system, private keys, unlike public keys, need to be kept secret in the user's device. They are used to unscramble ciphertext generated by the corresponding public key into plaintext. In a chat application, when Bob receives a message from Alice, he decrypts the ciphertext message with his private key and reads it. Because anyone with the private key can decrypt a message encrypted with that private key's public key, the strength of an asymmetric encryption system depends on how well the private key is protected from unauthorised access. Only the end user should have access the private key, and not the system developer or any other party. It should be generated on the user’s device and plaintext private keys should not be stored within any system or database that also contains any data that was encrypted for that private key. There can be no proverbial “backdoor.” access to the private key for anyone. With Virgil Security’s zero knowledge system, the end user’s private key is generated locally by the Virgil SDK on the user’s device upon sign-up or sign-in, and will remain stored locally on that device. This allows a user to decrypt encrypted data on this device where the private key is stored.

End-to-End Encryption

End-to-end encryption (E2EE) is a system of communication where only the communicating users can read the messages. In principle, it prevents potential eavesdroppers – including telecom providers, Internet providers, and even the provider of the communication service – from seeing the plaintext data because they do not have access to the private key needed to decrypt the conversation. In many messaging systems, including email and many chat networks, messages pass through intermediaries and are stored by a third party, from which they are retrieved by the recipient. Even if the messages are encrypted, they are typically only encrypted 'in transit', and then either stored in decrypted form by the third party or if they are encrypted, the key is stored in the same database, making unauthorised access possible. Even with a strong combination of at rest and in transit encryption, there are always gaps along the way which leave the message data exposed in plaintext. Storage providers justify this weak security in order to provide search and other features, or to scan for illegal and unacceptable content, but it also means they can be read and misused by anyone who has access to the stored messages on the third party system, whether this is by design or via a backdoor. This can be seen as a concern in many cases where privacy is very important, such industries with strict regulatory compliance obligations, users living under repressive governments, whistleblowing, mass surveillance, businesses whose reputation depends on its ability to protect third party data, negotiations and communications that are important enough to have a risk of targeted 'hacking', and where sensitive subjects such as health information about minors are involved. End-to-end encryption is intended to prevent data being read or secretly modified by anyone other than by the true sender and recipient(s). The messages are encrypted by the sender but the third party does not have a means to decrypt them, and stores them encrypted. The recipient retrieves the encrypted data and decrypts it themselves.


Digital Signature

A digital signature is a mathematical scheme for verifying the authenticity of digital messages or documents. A valid digital signature gives a recipient reason to believe that the message was created by a known sender (authentication), that the sender cannot deny having sent the message (non-repudiation), and that the message was not altered in transit (integrity). Digital signatures are a standard element of most cryptographic protocol suites, and are commonly used for software distribution, financial transactions, contract management software, and in other cases where it is important to detect forgery or tampering.


With Virgil Security, in addition to encrypting and decrypting data, it's possible to sign data digitally before sending in a way that recipients can verify it, thereby adding an additional layer of strong security to your application.

Perfect Forward Secrecy

Adding Perfect Forward Secrecy (PFS) to your encrypted communication prevents a possibly compromised long-term secret key from affecting the confidentiality of past and future communications.

Multi-Device Support

Multi-device support allows you to share private keys between multiple user devices (both smartphone and browser) in order to allow users to access their encrypted messages and data.

Multi-Recipient Support

Multi-recipient support allows you to encrypt a piece of data once and define multiple users that can decrypt that data instead of encrypting for each recipient individually.

Access to History

Access to History allows users to be added to an encryption group and have access to data that was encrypted before they joined.

Data-Stream Support

Data stream support allows for encryption and decryption of data streams. This is useful when the size of data is too large to be encrypted or decrypted all at once.

Encryption Algorithms

Algorithm Purpose

Key Generation


Key Derivation

Key Exchange

Message Authentication Code

Digital Signature

Encryption Schemes

Symmetric Algorithms

Elliptic Curves



Post-Quantum End-2-End Encrypted. Secure. Ad-Free.
Lightweight and Faster than the Competition.

Vox Messenger is an ad-free, post-quantum, end-to-end encrypted and secure alternative to other popular chat messenger apps.

Available for Free. Custom Corporate Edition Available on Request.

All Rights Reserved - © Copyright 2018-2020 - Vox Messenger (a Division of Kryotech Ltd.)

Protected by Virgil Security