when the intended recipient exports a file they just received. before it’s loaded into their app for transmission, or after it’s extracted from their service, e.g. What end-to-end encryption systems can’t do is protect your data before it enters their control, e.g. Keybase can store your group’s photos, videos, and documents with end-to-end encryption.” (Indeed, the company can’t even decrypt the data for you if you forget your password, no matter how strongly you can prove that the encrypted files are yours.)Īs Keybase explains it, “We use public key cryptography to ensure your messages stay private. If criminals steal that company’s servers, or the police arrive at the company with a search warrant, neither the crooks nor the cops can decrypt your data, and the company that is storing your encrypted files can’t help them to do so, either. When it comes to instant messaging or file-sharing apps that offer end-to-end encryption, even the company that handles your data is supposed to be merely one of those rest stops, and therefore can’t (or isn’t supposed to be able to) see what’s in your files, no matter how long you store them. It not only means that your data isn’t decrypted while it’s at any “rest stops” along the way, such as when an email message is held at your ISP for delivery later on, but also means that your data cannot be decrypted along the way, no matter whether you trust the person operating that “rest stop” or not. Google is the much bigger app, with access to much more experience and resources, so you would expect that, on balance, Google Meet would be the more secure option, if this remains a concern.īut again, Zoom is moving in the right direction, and it's addressing its vulnerabilities fast in order to meet increasing need.Keybase, owned by online meeting and teleconferencing behemoth Zoom, is a secure messaging and file sharing service that describes itself as providing “end-to-end encryption for things that matter.”Įnd-to-end encryption is pretty much what it says: encryption that starts on your computer, typically inside an individual app such as when a browser submits a login form, and only gets stripped off at the far end when the data arrives at its final destination, such as when a website receives the login form with your username and password in it.Įnd-to-end encryption over the internet doesn’t just mean that your data is encrypted while it’s in transit from node to node along its network journey – it’s supposed to be a stronger guarantee than that. In its announcement that Meet access would be made free, Google was also very keen to highlight its security measures, a clear dig at Zoom's stumbles. Adding new levels of expertise, and new layers of protection, significantly changes things for the app - but then again, Google has also recently expanded access to its multi-participant video chat platform 'Meet' as well, which will no doubt see many people shifting to Meet in preference to Zoom. So, should you trust Zoom with your data?ĭefinitely, Zoom's doing all the right things, and the acquisition of Keybase is another example of just how seriously the app is taking its obligations in this respect. Ultimately Keybase's future is in Zoom's hands, and we'll see where that takes us."Īccording to The Verge, Keybase co-founder Max Krohn will immediately take on the leadership of Zoom’s security engineering team. There are no specific plans for the Keybase app yet. " Initially, our single top priority is helping to make Zoom even more secure. Keybase's team will further add to this, which will change that app's focus - as explained by Keybase: It's clear that Zoom wants to snuff out any concerns about potential data-sharing via its app, and overall, looking at its upgrades, it's certainly far more secure than it was just last month. The announcement adds to Zoom's appointment of an information security officer council, the addition of new AES encryption of Zoom data, and changes to its system operating structure to remove data-sharing processes.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |