CHOOSE YOUR DEPTH 01 · OVERVIEW 02 · HOW IT WORKS 03 · DOCUMENTATION

THE TECHNICAL VERSION · E2EE · SERVERLESS · OFF-GRID

There is
no middle.

Komms removes the mandatory service provider from the message path. Peers communicate directly, through volunteer relays that can only see sealed ciphertext, over radio, or by carrying encrypted bundles offline.

Open the architecture
NO PHONE NUMBERNO SIGN-UPNO CENTRAL SERVICENO TELEMETRYAGPLv3
01

No one in the middle

Peers talk directly, via volunteer relays holding only sealed ciphertext, or over radio. There is no checkpoint where scanning can be mandated. That property comes from the architecture, not a privacy policy.

ARCHITECTURE SPEC →
02

State-of-the-art cryptography

Hybrid post-quantum key agreement combines X25519 with ML-KEM-768. Sessions use Double Ratchet with encrypted headers and XChaCha20-Poly1305 authenticated encryption.

CRYPTOGRAPHY SPEC →
03

Off-grid is first-class

The same sealed envelopes can ride local Wi-Fi, Bluetooth, commodity Meshtastic LoRa radios, or file and QR sneakernet. Transport changes do not change the conversation or trust model.

TRANSPORT SPEC →
04

Your keys, your data

Identity is a keypair minted on your device, not an account in a database. History is local, encrypted at rest, exportable, and deletable without asking a provider.

IDENTITY & TRUST →

A small security core. Everything else builds down.

Komms is split into narrow Rust crates with one-way dependencies. Applications can change without rewriting cryptography, and the cryptographic core can be reviewed without pulling in the UI or network stack.

READ THE FULL LAYER MODEL →
APPLICATIONSDesktop · Mobile · Headless
KULT-FFIStable language-neutral API
KULT-NODESessions · Delivery · Scheduling
KULT-PROTOCOLKULT-STOREKULT-TRANSPORT
KULT-CRYPTOPQXDH · Double Ratchet · XChaCha20-Poly1305

ONE SEALED ENVELOPE, FOUR WAYS HOME

Internet: libp2p · QUIC · DHT · relay v2 · hole punching
GLOBAL · MS
LAN: mDNS discovery, direct QUIC on shared Wi-Fi
SITE · MS
BLE: phone-to-phone, no infrastructure
~100 M · S
LoRa Mesh: stock Meshtastic radios, multi-hop, ~€30
KM–100 KM · S–H
Sneakernet: sealed .kkb bundles on USB or QR
ANYWHERE · HUMAN

Honest limits.

A serious threat model describes what the system cannot do as carefully as what it can. Komms is also pre-audit software and must not yet be treated as production-ready for high-risk use.

IT IS DESIGNED TO PROTECT
  • Message content from anyone carrying or relaying it
  • Recorded ciphertext against future quantum computers
  • Local history on a lost, locked device
  • Communication continuity during internet shutdowns
IT CANNOT PROTECT
  • A device that is already compromised or seized unlocked
  • The physical fact that a radio transmitted
  • You if a contact shares your messages
  • Anonymity against a global passive adversary
READ THE COMPLETE THREAT MODEL →
M0–M3 ✓: design framework, crypto core, protocol, encrypted storage, internet transport, and headless node built and tested
M4–M6: Meshtastic bridge, desktop and mobile alpha apps, mnemonic-sealed backup, and sender-key groups
Near: real-time voice and video calls on internet and LAN
Release gate: external security audit and app-store distribution

GO DEEPER

Every choice is documented.

The documentation contains the complete threat model, protocol design, cryptographic construction, implementation guide, and architecture decision records.

Open the documentation → Back to the simple overview