KOTO
Your Digital Sanctuary
No phone. No email. No trace.
Encrypted messaging built on Zero-Knowledge Proofs, Signal Protocol, and Sealed Sender — for those who value privacy above all else.
Privacy is not a feature — it's the architecture
Every layer of Koto is designed to know as little as possible about you.
Zero-Trace Identity
No phone number. No email. No IP logging. Your identity is a 24-word seed phrase generated entirely offline on your device.
Registration requires:
Phonenever
Emailnever
IP loggednever
IdentityBIP-39 Seed (local)
AuthEd25519 challenge-response
Sealed Sender
The server delivers your message without knowing who sent it. Only the recipient can unseal the envelope and see the sender.
What the server sees:
AliceencryptsSealed Envelope
Serversees only→ recipient_key
Serversender?████████ unknown
Bobunsealsmessage + sender
ZKP Anti-Spam
Zero-Knowledge Proofs let you prove you're not a bot — without revealing who you are. No phone verification. No CAPTCHA.
How it works:
1.Client solves Proof-of-Work (~5s CPU)
2.Receives anonymous credential (24h TTL)
3.Sends ZK-proof: "I have valid credential"
4.Server verifies proof, never sees identity
How Koto compares
Anonymity isn't an add-on. It's the foundation.
| Feature | Koto | Signal | Telegram |
|---|---|---|---|
| No phone/email requiredBIP-39 seed only | |||
| E2E encryption (default)Signal Protocol | |||
| Sealed SenderServer blind to sender | |||
| IP hiding (OHTTP)Oblivious HTTP relay | |||
| Anonymous anti-spamZKP + Nullifiers | |||
| Open sourceFull stack | |||
| Decentralized identityEd25519 key pair | |||
| Group E2E (MLS)RFC 9420 for 100+ members |