Kudelski Security and X41 D-Sec published a joint review of Wire’s encrypted messaging protocol implementation. They found it to have “high security, thanks to state-of-the-art cryptographic protocols and algorithms, and software engineering practices mitigating the risk of software bugs.”
The issues that were discoveredduring the review have been fixed and deployed on iOS and Android. Deployment is ongoing for Wire for Web and desktop apps.
Update: Fixes for Wire for Web and desktop went live on February 17.
Security reviews can be broadly split into three levels:
Kudelski and X41 D-Sec reviewed the second level — the implementation of the Proteus messaging protocol and Cryptobox API and its C wrapper Cryptobox-C. Cryptobox defines a simple, high-level API to Proteusin order to hide the protocol’s complexity to callers in Wire applications. Finally, the review included CoffeeScript counterparts of Proteus and cryptobox, as implemented in the proteus.js and cryptobox.js.
The review covers Proteus implementation in all platforms where Wire is available — iOS, Android, macOS, Windows, Linux, and Wire for Web that works in modern, webRTC-supported browsers.
Substantial experience and interest in researching protocols similar to Wire’s, and reviewing secure messengers in general played a huge role in deciding who we wanted to partner with for this review. Team members at Kudelski Security and X41 D-Sec have both demonstrated this in the past and continue to independently review not just Wire, but also other apps in the secure communication space.
Publishing independent protocol implementation reviews is unfortunately not yet a norm in the messaging space. Reviews from a couple of years ago may be getting stale as the apps are constantly evolving and code base changing.
Going forward every major development at Wire will also include a security review. We’ll continue to partner with security experts like Kudelski Security and X41 D-Sec to work on a complete solution review.
All Wire client source code is on GitHub and the server code will be open sourced by the end of Q1, 2017.
See also: Wire Cryptography Audit (with X41 D-Sec)