Double Ratchet Algorithm

Double Ratchet is a session key management algorithm that provides extra secure end-to-end encryption for messaging between two users or endpoints. The Double Ratchet algorithm provides perfect forward secrecy and post-compromise security by generating unique session keys for each new message. Even if the communication is somehow compromised, a potential attacker will only be able to access the most recent message, and soon as a new message is sent by one of the two users, the attacker will be locked out again.

The session keys are generated using a cryptographically strong unidirectional function, which prevents an attacker from potentially obtaining earlier keys derived from later ones. In addition, the parties renegotiate the keys after each message sent or received (using a new key pair unknown to the attacker), which makes it impossible to obtain later keys from earlier ones.

See Double Ratchet Encryption guide to implement the algorithm in your application.

Get Help

Our developer support team is here to help you! Find out more information at our Help Center and our YouTube channel.

You can also get extra help from our support team on Slack or send us an email at [email protected].

Have fun building your secured digital solution with Virgil Security!

Sign up for the developer digest

Share your email so we can send you updates about our our toolkits and developer platform.