Private messaging,
without the trust.
Cipher encrypts every message on your device before it ever leaves. The server only relays ciphertext it has no way to read, so your conversations stay between you and the people you're talking to. It's built on X3DH key agreement and the Double Ratchet — the same approach used by the messaging apps security researchers actually recommend.
What's inside
A full messenger, not a tech demo. Everything works the way you'd expect from a modern chat app — the encryption just happens to be real.
End-to-end encryption
Messages, reactions, and photos are encrypted on your device with the Double Ratchet. The keys never leave it.
Direct messages and groups
One-to-one chats and group chats, with invites, mentions, member roles, and owner-only controls.
Disappearing messages
Set a timer and messages remove themselves. Reply, edit, pin, forward, and react like anywhere else.
Works across devices
Set a device password and your chats, photos, and settings restore on a new device — still encrypted end-to-end.
Profiles and sharing
Avatars, bios, and profile links that show a clean preview when you paste them somewhere.
Themes and customization
Ten themes, ten accent colors, custom reactions, and a layout that holds up on phone and desktop.
How the security actually works
Your keys are your account
There's no password stored anywhere. Your identity is a keypair generated on your device. You get a 64-character recovery code once, and it's the only way back in — not even the server can reset it.
The server knows nothing
It holds public keys and opaque ciphertext, and routes encrypted envelopes it can't open. No readable message ever reaches it, so a breach leaks nothing useful.
You can check for yourself
Each conversation has a safety number. Compare it with the other person in real life — if it matches, nobody is sitting in the middle of your conversation.
Keys rotate constantly
The Double Ratchet derives a fresh key for every message. If one key were ever exposed, the messages before and after it stay sealed.
Getting started
Create an account
Pick a username. Your keys are generated on your device and you're handed a one-time recovery code to save.
Add people
Search by username, add contacts, or share your profile link. Start a direct message or create a group.
Start talking
Everything you send is encrypted end-to-end. Compare a safety number when you want certainty, and that's it.
Common questions
Can Cipher read my messages?
No. A message is encrypted on your device and only decrypted on the recipient's device. The server sees the ciphertext and routing information, never the contents.
What if I lose my recovery code?
The account can't be recovered. There's no "forgot password" flow because there's no password to reset — that's the cost of the server knowing nothing. Keep the code somewhere safe.
What happens on a new device?
Sign in with your recovery code. If you set a device password beforehand, your chats, photos, and settings sync down and are decrypted locally. Without one, the new device starts empty.
Is there any tracking or ads?
No ads, no trackers, and nothing readable to sell. There isn't a profile of you to build because the message data is encrypted end-to-end.
Should I trust this with my life?
It implements the same family of encryption as the well-known secure messengers, but it hasn't been through a formal independent audit. For everyday private conversations it does the job; for high-stakes threat models, use an audited app.
Start a conversation
No phone number, no email, no tracking. Just you and the people you choose to talk to.