Users of the iOS Version have already approved the new option: they can sign in using a pincode, and it’s fast and easy.

We also added access by password in our PWA application too. It provides an extra level of encryption and helps to login easier. Now, when you open the app, you don’t have to enter a passphrase each time.

What good is a password?

“Stay logged in” option is disabled by default, means that you have to enter your passphrase each time after closing the app.

If you choose to Stay logged in, the app locally stores all the data on user’s device (including passphrase), encrypted with password you set. When you’ll open the messenger next time, you’ll be required to enter the password.

Forgot your password? Don’t worry: passphrase is above all. You can reset the password with it when you need to.

Some technical details

When a password is assigned, the app calculates the pkdbf2 hash which is used for encrypting nacl.secretboxof passphrase and local user’s data.

Because of limitations of browser’s Local Storage we moved to IndexedDB. This allowed us to increase the encryption speed.

So when you’re using password, the correspondence is stored locally and encrypted. Security of this data depends of complexity of your password partly.

When you are not using password, the web application will not be storing data on the device. But you should remember that data is always stored in your browser (in the Session Storage) while the application is working. It is cleaned when you’re closing the tab. However in case of an unexpected power outage, it might be not happen.

Important to know

Password is more convenient than a passphrase. But you have to use really strong password if you want to get an adequate level of security. Intruders can capture your password in unsafe environments or get it using social engineering. Please read the article “Secure Messengers Do Not Exist” to learn more.

If you choose to login with password, we have warned you about the increase of risks. And we want to remind you some cybersecurity rules:

when you create a password, it is recommended to use a combination of upper and lower case letters, numbers and symbols;

do not use same passwords for different sites, apps and services;

do not use obvious passwords such as phone numbers, birth dates, names of relations or easy-to-remember keyboard combinations.

More security rules:

When you use the PWA app, you have to be sure that you trust your browser and OS;

In case of a power outage, user’s data (including passphrase) could be saved on PC or browser;

Physical access to your device is the real issue. Use passwords and lock all your devices when you’re not using them. Turn on encryption for hardware.

How to set the password?

Go into the Settings

2. Use the “Stay logged in” checkbox. The window for setting password will appear. Enter a strong password.

4. Now you can access the ADAMANT Messenger using a password.

5. Forgot your password? Use the “Remove password” link on the login screen(then passphrase to login required).

Security access

When you login using password, you are aware of possible reduction of security level.

You also confirm that you’ve read this article and learned about ADAMANT Messenger Terms of Service. Remember: safety of an account is your own responsibility.