CommsBlack Mobile

← Back to CommsBlack Training

Module 05 — Secure Communications (COMMSEC)

📡 1. What COMMSEC Covers

Communications security (COMMSEC) is about protecting what you say, who you say it to and how that fact can be observed.

  • Content: the messages, calls, files.
  • Metadata: who talked to whom, when and how often.
  • Identity: how a communication links back to a real person.

💬 2. Encrypted App Suite

Modern encrypted messengers protect content well when used correctly, but they still differ in how they handle identity, backups and metadata.

  • Prefer end-to-end encrypted apps with strong default settings.
  • Disable cloud backups for sensitive chats where appropriate to reduce extra copies.
  • Separate identities by device or profile rather than using one app account for everything.

🔑 3. PGP & High-Assurance Channels

PGP is still useful where long-term integrity and authenticity matter (e.g. verifying that a message really came from a given key holder).

  • Use strong, unique keys and protect private keys carefully.
  • Keep revocation and backup plans documented and tested.
  • Rotate keys if their use case or risk level changes substantially.

🧭 4. Behavioural Rules

  • Use consistent channels for sensitive topics; avoid “channel hopping”.
  • Do not mix high-risk and casual chat under the same identity.
  • Assume anything you send might eventually be screenshotted or forwarded; write accordingly.