An end-to-end encrypted zero-trust capable messaging platform

Minkan combines existing, well-established as well as new technologies into one platform.

The core of Minkan is the concept of a web of trust so users (clients) do not have to rely on a central authority (e.g. a server) to provide the correct identity for an user. For that, Minkan uses OpenPGP.

Minkan uses the OpenPGP identities with messaging protocols to achieve forward secrecy and post-compromise security. For one-to-one communication, Minkan uses the Signal protocol. For groups, Minkan aims to use Messaging Layer Security (MLS).

For the communication with the server, Minkan uses a GraphQL API.

Minkan uses CBOR as data format in the GraphQL API as well as in the actual client packets used in the client-to-client communication. This enables clients to be versionless.

For authentication (in the client-to-server context), Minkan relies on an OpenID Connect provider with Back-Channel Logout support.