Click the button below for one-click deployment to Cloudflare Workers:
Note: This method creates a new project based on the main repository. Future updates to the main repository will not be automatically synchronized.
- First, fork this project to your own GitHub account.
- Open the Cloudflare Workers console, select "Import from GitHub," and choose your forked repository for deployment.
This project has built-in auto-sync workflow. After forking, no action is required. Updates from the main repository will automatically sync to your fork, and Cloudflare will automatically redeploy without manual maintenance.
After cloning the project and installing dependencies, use npm run dev to start the development server.
Use npm run deploy to deploy to Cloudflare Workers.
NodeCrypt is a truly end-to-end encrypted chat system that implements a complete zero-knowledge architecture. The entire system design ensures that servers, network intermediaries, and even system administrators cannot access any plaintext message content. All encryption and decryption operations are performed locally on the client side, with the server serving only as a blind relay for encrypted data.
- Frontend: ES6+ modular JavaScript, no framework dependencies
- Backend: Cloudflare Workers + Durable Objects + KV
- Communication: Real-time bidirectional WebSocket communication
- Build: Vite modern build tool
- Server Blind Relay: The server can never decrypt message content, only responsible for encrypted data relay
- No Chat History Storage: The system does not persist chat plaintext/history; message data exists only in runtime memory
- End-to-End Encryption: Messages are encrypted from sender to receiver throughout the entire process; no intermediate node can decrypt them
- Forward Secrecy: Even if keys are compromised, historical messages cannot be decrypted because there are no historical messages at all
- Anonymous Communication: Users do not need to register real identities; supports temporary anonymous chat
- Rich Experience: Support for sending images/files, private chat by clicking user avatar, selectable UI themes and languages
- Real-time Member Notifications: The room online list is completely transparent; any member joining or leaving will notify all members in real-time
- No Historical Messages: Newly joined users cannot see any historical chat records
- Private Chat Encryption: Clicking on a user's avatar can initiate end-to-end encrypted private conversations that are completely invisible to other room members
Room passwords serve as key derivation factors in end-to-end encryption: Final Shared Key = HKDF-SHA256(ECDH_Shared_Key || PBKDF2(Room Password))
- Password Error Isolation: Rooms with different passwords cannot decrypt each other's messages
- Server Blind Spot: The server can never know the room password
- Server maintains a long-term RSA-2048 master key (KV storage)
- On connect, client receives server master key fingerprint, applies TOFU (Trust On First Use), and pins it per domain in browser localStorage
- Session RSA-PSS public key must be signed by the trusted master key, otherwise connection is blocked
- Optional
mkURL parameter allows out-of-band fingerprint verification in shared invite links
- Each client generates independent elliptic curve key pairs (P-384 curve)
- Establishes shared keys through Elliptic Curve Diffie-Hellman key exchange protocol
- Each client has an independent encrypted channel with the server
- Server Communication: Uses AES-GCM with per-message nonce/IV and additional authenticated data (AAD)
- Client Communication: Uses AES-GCM with separate AAD context for client payloads
- Provides confidentiality + integrity for transport/application payloads
sequenceDiagram
participant C as Client
participant S as Server
participant O as Other Clients
Note over C,S: Phase 1: TOFU Master Key Verification
C->>S: WebSocket Connection
S->>C: Master RSA-PSS key + fingerprint
Note over C: TOFU/pin check (or mk link verification)
Note over C,S: Phase 2: Client-Server Key Exchange (P-384 ECDH)
C->>S: P-384 ECDH Public Key
S->>C: Session RSA-PSS public key + master-key signature
Note over C: Verify signature and derive AES key
Note over S: Derive AES-256 key from P-384 ECDH
Note over C,S: Phase 3: Room Authentication
C->>S: Join Request (Room Hash, AES-256 encrypted)
Note over S: Add client to room/channel
S->>C: Member List (Other client IDs, encrypted)
Note over C,O: Phase 4: Inter-Client Key Exchange (Curve25519)
Note over C: Generate Curve25519 key pair for each member
C->>S: Curve25519 Public Key Bundle (AES-256 encrypted)
S->>O: Forward Client C's public key
O->>S: Return other clients' Curve25519 public keys
S->>C: Forward other clients' public keys
Note over C,O: Phase 5: Password-Enhanced Key Derivation
Note over C: Client Key = HKDF-SHA256(ECDH_Curve25519 || PBKDF2(password), salt=roomHash)
Note over O: Client Key = HKDF-SHA256(ECDH_Curve25519 || PBKDF2(password), salt=roomHash)
Note over C,O: Phase 6: Identity Authentication
C->>S: Username (AES-GCM encrypted with client key)
S->>O: Forward encrypted username
O->>S: Username (AES-GCM encrypted with client key)
S->>C: Forward encrypted username
Note over C,O: Both clients now verify each other's identity
Note over C,O: Phase 7: Secure Message Transmission
Note over C: Encrypt payload with AES-256-GCM client key
C->>S: Encrypted message (inside encrypted transport envelope)
Note over S: Decrypt transport AES-256-GCM only<br/>Cannot decrypt end-to-end payload
S->>O: Forward encrypted payload
Note over O: Decrypt payload with AES-256-GCM client key
- Web Cryptography API: Native browser encryption implementation with hardware acceleration
- elliptic.js: Elliptic curve cryptography library implementing Curve25519 and P-384
- Web Crypto AES-GCM/HKDF/PBKDF2/RSA-PSS: Standard primitives provided by browser and Worker runtimes
- js-sha256: SHA-256 hash algorithm implementation
Users can observe the complete encryption and decryption process through browser developer tools to verify that messages are indeed encrypted during transmission.
Network packet capture tools can verify that all WebSocket transmitted data is unreadable encrypted content.
All encryption-related code is completely open source, using standard cryptographic algorithms. Security researchers are welcome to conduct independent audits.
- Use Strong Room Passwords: Room passwords directly affect end-to-end encryption strength; complex passwords are recommended
- Password Confidentiality: If a room password is leaked, all communication content in that room may be decrypted
- Use Latest Modern Browsers: Ensure security and performance of cryptographic APIs
Security researchers are welcome to report vulnerabilities and conduct security audits. Critical security issues will be fixed within 24 hours.
This project uses the ISC open source license.
This project is for educational and technical research purposes only and must not be used for any illegal or criminal activities. Users should comply with the relevant laws and regulations of their country and region. The project author assumes no legal responsibility for any consequences arising from the use of this software. Please use this project legally and compliantly.
NodeCrypt - True End-to-End Encrypted Communication 🔐
"In the digital age, encryption is the last line of defense for privacy"