We're excited to announce that weâve launched a new version of Unseen for iOS! Not only have we given the app a sleek new makeover, but this new version features its own direct messaging component that extends our commitment to privacy to include secure, user-to-user communication.
Until now, Unseen consisted only of content posted publicly. We saw tremendous growth with this version, and learned a lot about how people communicate in anonymous settings. Something pretty exciting we noticed was that users eagerly embraced anonymity as a means to meet new people, using Unseen as a launch pad to start conversations with others in the hopes of sparking ongoing contact. When it came time to take the conversation off the public feed, users would usually exchange Snapchat or Kik handles, sometimes even phone numbers.
We loved that people were using Unseen to meet new people, but this brought about some security concerns. In order to protect our usersâ identities and preserve the anonymous nature of Unseen, we encrypt all the information that we receive about usersâ devices so that nothing posted to the public feeds can ever be traced back to an individual â not by the police, not by a hacker, not even by an Unseen employee. From a technology standpoint, our public feed is completely secure. The public exchange of identifying information, however, could leave users vulnerable.Â
With the new version of Unseen, we wanted to expand on this social discovery dimension without compromising our commitment to anonymity. The updated version allows the OP to send private, disappearing messages to users who comment on their photo. Commenters within the same thread can also exchange messages. So now, if users decide they want to swap phone numbers, they can do this over private messaging instead of posting it publicly.
But just how private is private messaging on Unseen?
In this handy and comprehensive scorecard, The Electronic Frontier Foundation reviews a series of platforms that feature direct messaging. The scorecard breaks down seven key cryptography components a product can utilize to keep its usersâ messages secure, evaluating both widely-used and up-and-coming communication technologies according to how many of these security processes they employ.
This scorecard provides a lucid and transparent framework with which to understand the technology of privacy, one that could help empower the public to hold the products they use to higher privacy standards. In the interest of transparency, we felt that this framework would be a helpful starting place for Unseen users who may have questions about the security of their messages.
Here's how direct messaging on Unseen scores:Â
Is your communication encrypted in transit?
Yes! Photos and messages are encrypted on the senderâs device and never decrypted until they reach the recipient. Should a message be intercepted in transit, it would be unreadable.
Is your communication encrypted with a key the provider doesn't have access to?
Yes! The key that can decode an encrypted message is generated and stored ONLY by the sender and recipient. Our server does not hold any of these keys, so if our server was ever breached, the messages stored there would be unreadable.
Can you independently verify your correspondent's identity?
Yes! While there is no built-in function for users to verify their correspondentâs identity (this is an anonymous app, after all), no person or third-party application could sit between a sender and recipient because they wouldnât be able to access the necessary keys. Â
Are past communications secure if your keys are stolen?
Yes! All private messages self-destruct after 24 hours and each conversation generates a new set of keys.
Is the code open to independent review?
Is the crypto design well-documented?
Has there been an independent security audit?
While our specific code has not been documented for the purpose of review at this time, itâs something we're interested in for the future. The newest version of Unseen is a sort of Frankensteinâs monster of best practices that are widely embraced by professional cryptographers, and we owe a lot to the community of developers who contribute their expertise to the expanding pool of public knowledge about privacy on the web. As Unseen continues to grow, we want to chip into this conversation wherever we can.
Now go forth with this knowledge and start some conversations! Weâll keep your messages safe.