Echo Messenger

Echo is an end-to-end encrypted messaging web application developed as a final year university project. Unlike traditional password-based authentication systems, Echo employs Time-based One-Time Passwords (TOTP) for user login, enhancing security and user trust. This approach ensures that sensitive information remains protected, as the TOTP mechanism adds an extra layer of authentication that is both dynamic and user-specific.

The application demonstrates the feasibility of implementing on-device end-to-end encryption in messaging platforms, thereby bolstering user confidence in data privacy. To set up Echo, users need to install a local server application supporting a MySQL database, such as XAMPP, and import the provided `final.sql` file. User accounts are created by entering a number and scanning a QR code with an OTP application like Microsoft Authenticator or Twilio Authy, which generates a one-time password. This process securely stores an encrypted version of the secret in the connected MySQL database, ensuring that user credentials are both unique and securely managed.