Zoom Starts Beta Version Of End-To-End Encryption In July
The video conferencing service Zoom plans to launch its beta version of end-to-end encryption in July. All users can test it.
Zoom’s end-to-end encryption (E2EE) should be available to all users in a beta version from July. The video conference service offers the function as an addon. Users with a free account have to provide additional information once, for example a telephone number that is verified via a text message. This is to prevent abuse.
Since the publication of the white paper on E2EE, one has been in contact with freedom rights organizations, their own security experts, experts in child security and encryption, government representatives and their own users, and feedback has been obtained, according to a blog post by Zoom. In addition, they had tried out new technologies to be able to offer E2EE – this can be seen on GitHub.
Protection Against Misuse And For The Data
With the verification and the other security mechanisms available, one hopes to minimize accounts that are set up for the abuse of the service. Zoom was criticized several times for the so-called “zoom bombing”, in which strangers disturbed video calls and sometimes showed pornographic material or prohibited symbols. To do this, they used freely accessible conference IDs and passwords. Zoom has already activated a waiting room by default in which participants are before the host releases them for the actual meeting – but this can also be switched off manually.
So far, Zoom has been using AES 256 GCM transport encryption, which, according to its own statements, currently complies with the highest security standard. E2EE is optional because it also has its limitations: It is no longer possible to connect callers from the normal fixed network, and conference systems that use public telephone networks cannot be integrated accordingly. Administrators can activate or deactivate E2EE for individual accounts as well as entire groups.