👻 GhostTalk

Zero Knowledge Architecture

We build messaging infrastructure that respects fundamental human rights. No logs. No tracking. No compromises.

System Architecture

💾 Redis (RAM)

VOLATILE

✓ Premium messages (30s TTL)
✓ Session tokens (5min TTL)
✓ Rate limit counters
✓ Survives power loss: NO
✓ Encryption: AES-256-GCM

🗄️ PostgreSQL (Disk)

PERSISTENT

✓ User metadata (7-day retention)
✓ Public keys (E2EE)
✓ Account UUIDs
✓ IP addresses: NEVER
✓ Message content: NEVER

Message Flow

Client Encrypts

→

NGINX (SSL)

→

Node.js API

→

Redis (30s)

→

Recipient

Security Layers

🔐

Client-Side Encryption

RSA-2048 OAEP + AES-256-GCM. Keys never touch servers.

🛡️

IDOR Protection

UUID-based message routing prevents enumeration attacks.

🚨

Panic Button

Instant account + message wipe. No recovery possible.

🔒

Zero-Trust Architecture

Server cannot decrypt messages. Only recipients can.

⏱️

Rate Limiting

Prevents brute force and DDoS attacks.

👤

IP Masking

All addresses logged as 0.0.0.0 by default.

🚨 Panic Button Demo

In emergency situations, trigger instant account + message destruction.
(This is a demo. No actual data will be deleted.)

About GhostTalk Inc.

Mission

Build communication infrastructure that respects fundamental human rights. We believe privacy is not a luxury, but a requirement for free expression.

Transparency Commitment

We publicly document every privacy compromise. Our source code, architecture decisions, and data retention policies are open for audit. Trust through verification.

Funding Model

100% ad-free. Revenue comes from premium subscriptions and community donations. Your privacy is never for sale.