Skip to content

Latest commit

 

History

History
128 lines (72 loc) · 9.76 KB

File metadata and controls

128 lines (72 loc) · 9.76 KB

Push Chat for Web3

An Introduction

Push Chat is a web3 messaging protocol that enables wallet addresses to send and receive messages, offering a secure and privacy-focused alternative to traditional messaging apps. By leveraging blockchain technology, users can communicate directly via their wallet addresses without personal identifiers like phone numbers. Designed for mainstream adoption, Push Chat serves as a protocol that any dApp, web3 wallet, or backend can integrate to provide their users with messaging capabilities. Additionally, chat messages in Push Chat come with built-in notifications, similar to what users are accustomed to in web2 messaging platforms, ensuring a familiar and convenient user experience. This combination of features makes Push Chat a vital tool for anyone seeking to harness Web3 communication's full potential.

Since Push Protocol started with decentralized notifications, every chat message sent on the protocol has a notification built in. Whenever a message is sent to an address, the receiving address will receive a notification along with the message if they opt-in.

Unlike traditional messengers that require users to provide their information to sign up, like their email, phone number, or any other personal data about the user, Push Chat requires no personal information whatsoever to start messaging on the protocol.

All the user needs is a wallet address.

All the messages are stored on IPFS and are encrypted as well as signed.

It's important to note that only the addresses involved in the conversation shall be able to decrypt the messages, and anyone can verify that the message was indeed sent by the sender's address and that the messages are encrypted.

When sending a message to an address, it is sent through Push Nodes.

Push Nodes are a network of nodes, where each node can have a different role in the network that is responsible for validating each notification and chat message between addresses.

Their main task is to validate that:

  • the payload is following the corresponding payload standard,
  • the sender can actually send the message, and signature validation,
  • if the payload is valid, the Push Nodes will store the message on IPFS and then send a notification (considering that the address has opt-in) to the receiver of the message.
  • Additionally, to read the messages, the receiver client will query the Push Nodes for any new message that was sent to it.

Spam prevention

Spam prevention has always been one of our major priorities.

There are countless examples of users spamming others with fake giveaways, random messages, or unwanted notifications.

For notifications, the core protocol itself adopts a user-centric approach. This means that all the notifications are opt-in or opt-out based.

This means that users shall only receive notifications from protocols they opt in to. Users can fine-tune which notifications they see the value of and only opt-in for them while every other notification shall land in the user's spam box.

Chat is no different. We are working on our spam prevention mechanism on the core protocol level (more information about this soon), but as of today, we have a chat request that enables spam prevention as it requires user acceptance before push notifications for those chats are enabled.

Chat request

Push Chat has two types of message groups: Inbox and Request.

The very first time an address wants to send a message to another peer, the address must send an intent request. This first message shall not land in this peer Inbox but instead in its Request box.

When the user sees this message in its Request box, the user has 2 options:

  • It can accept it and start messaging back the address
  • It can ignore it (blocking users will be launched on the next version)

It must be noted that addresses don’t get notified about messages on the Request box. The notifications are only received if the address accepts the Request to talk to the other peer.

This prevents users from receiving notifications from any random address that sends them a message. So the user only receives notifications from the chat the user wants to talk to.

Sending messages

The core protocol allows addresses to message any other address on Ethereum or Polygon. If the message is sent to an address that hasn’t authenticated itself yet on the protocol (generate a pair of encryption keys), those messages will be in plain text until the address you are talking to authenticates itself in the protocol. From that moment on, all the following messages will be encrypted.

If you send a message to an address that has already been authenticated into the protocol, the messages will be encrypted. The reason for this choice was to allow addresses to send messages to their friends regardless of whether they have accessed the application. This design choice was made for better UX, but it can easily be changed if the community decides to.

Decentralization

Chat messages are sent between addresses via the Push Nodes. Push Nodes are the nodes responsible for validating notification and chat payload and for dispatching notifications to addresses. Push Nodes can have different roles in this Communication Network.

The vision for Push Protocol is for the Push Nodes to be run by the community and to get rewarded by contributing to the network's decentralization. As of today, Push Nodes are run by Push Protocol, but the team is working on decentralizing the nodes.

Although the Push Nodes are run by Push Protocol, users can always verify that the chat messages and notifications haven’t been tampered with and that they have indeed been sent by the correct address. Users can always verify this by the Verification Proof.

Verification Proof

Verification Proof is a property that is sent along with the notifications and chats messages to help the network validate the sender, the chain from which the notification (or message) is sent, and the content of the notification (or message) along with any other validation that might be required.

For notifications, the verification proofs differ based on the platform from which they are sent. i.e., Smart contracts verification proof can be validated on-chain, and smart contract-based notifications will usually carry transaction hash proofs while off-chain/gasless notifications usually carry EIP-712 proofs, though they are capable of carrying smart contract verification proof as well, which makes it composable.

Encryption

When an address logs in to the protocol for the first time, PGP encryption keys are generated for the address.

The PGP private key is then encrypted with the address’ public key and then sent the encrypted PGP private key, along with the PGP public key, to Push Nodes to get stored.

{% hint style="success" %} This is extensible, which means that the PGP key can be encrypted in the future with other methods paving the way for a multi-chain future. {% endhint %}

Messages are encrypted on the client by using the AES encryption algorithm.

A different AES secret key is generated for each message. This secret key is then encrypted with the PGP public keys from the parties involved in the conversation and then sent the encrypted AES key is to Push Nodes.

The message payload content also contains the encrypted AES key in order to decrypt the message.

NFT Chat

Each NFT Chat has a pair of public and private encryption keys responsible for encrypting and decrypting chat messages. These encryption keys are stored encrypted on the Push Network.

The way that NFT Chats are handled by the Push Network is similar to any chat message. However, there is a crucial distinction: the encryption keys are encrypted using a secret key chosen by the NFT holder rather than being derived from the user's signature.

Transferring the NFT

The key pair is encrypted by a secret key selected by the NFT holder. When the NFT holder decides to transfer the NFT to another user, two possible scenarios can occur:

  • In the first scenario, the original owner can choose to send the new owner the secret key. This allows the new owner to decrypt all the chat messages associated with the NFT. This option ensures the continuity of the chat messages within the NFT.
  • In the second scenario, the new owner creates a new secret key for the NFT. However, this means that the new owner will not have access to any previous chat messages linked to that NFT. This option prioritizes the security of the chat messages and ensures that no one else has access to them.

User Experience

When users log in to the dapp to read NFT Chat messages, they are prompted to enter their secret key to decrypt the chat messages.

If an NFT Chat does not have a secret key set, or if the user has just received the NFT and doesn't have access to the previous secret key, they are prompted to create a new secret key.

Push Chat SDK

With the SDK, it will be easy for developers to integrate messaging into their dapps. The use cases are endless:

  • You can provide customer support to your users
  • Create groups to discuss governance proposals without relying on Discord
  • Chat with the community on a web3 game
  • DMs or DAO token gated conversation
  • Any other cool, crazy feature you can think of

Alright. Now that you have a clear picture of the Push Chat and its SDK, let's dive in and try to integrate the push chat into your application.

{% content-ref url="../developer-guides/integrating-push-chat.md" %} integrating-push-chat.md {% endcontent-ref %}

{% content-ref url="../developer-tooling/push-sdk/sdk-packages-details/epnsproject-sdk-uiweb/push-support-chat.md" %} push-support-chat.md {% endcontent-ref %}