SIMP

8/27/2004
 

Product Information

Vendor:Winfosec
Price:Free

Product Rating

Features star star
Ease of Use star star star star
Performance star star star star
Documentation star star
Support star star star
Value for Money star star star star star
Overall Rating star star star
For:

Free, simple, does what it says on the box.

Against:

Not scalable, very basic.

Verdict:

A simple-to-use and very secure piece of software that is more suited to occasional use or very small businesses, rather than a fully fledged enterprise environment.

Related Group Test

Winfosec's SIMP (Secure Instant Messaging Protocol) is an open source IM tool for Windows. SIMP doesn't make use of a central messaging server, which while technically making it more secure, doesn't make it as attractive as an enterprise offering.

The product operates on a P2P basis, like file sharing software such as Kazaa. The executable file weighs in at only 200Kb, making it easy to transport and is a standalone, meaning no installation, you just download and run from its location.

You need to know the IP address of whoever you want to contact, which could be frustrating if working with dynamic IP addresses. You then select a username, and as SIMP does not use registration or a user database, there is no problem with finding unique names.

You can connect directly to the relevant peers without using encryption, although it is best to decide on a password beforehand. You then input the password at connection and are ready to start an encrypted conversation. Without encryption, the messages are passed in plain text. Encryption is via Blowfish, which uses a variable key length of between 32 and 448 bits, while SIMP will automatically adjust any password keys which are not divisible by eight. Blowfish is widely recognized as strong encryption and as such is classed as munitions by the U.S. making it illegal to use in certain countries.

SIMP features the usual ingoing and outgoing message windows, but only offers basic functionality, you can only chat with whoever you are immediately connected to, restricting its scalability. The program does not offer any functionality to transfer files either, it is literally a secure messaging tool.

One appealing feature is that SIMP is free and, with it being open source, security buffs can peruse the source code to their satisfaction. This also means that SIMP could be implemented as part of an in-house development of an IM tool, as long as it complies with the open source general license.

However, open source also means that the software is not supported by the developers, but as it is so simple to use, it is extremely unlikely you will need support.

 
 
 
Popular Topics
Breaches & Exposures Browser Flaws Compliance Consumer Threats Email Security Emerging Threats Finance Government Groundbreakers Healthcare High Tech Insider Threats IT Security Training Lawbreakers & Cybercrime Legal & Professional Services Manufacturing Microsoft Mobile Endpoint Security Patch Management Phishing Privacy Regulation Product News Spam Techniques Trojans Vulnerabilities & Flaws
Home | News | Products | Whitepapers | Jobs | Subscribe | Contact Us | About Us | Advertising | Sitemap | Editorial | Subscribe to our RSS feeds RSS

This material may not be published, broadcast, rewritten or redistributed in any form without prior authorization.

Your use of this website constitutes acceptance of Haymarket Media's Privacy Policy and Terms & Conditions