• Skip to main content
  • Skip to header right navigation
  • Skip to site footer
iGuRu

iGuRu

Real-time Technology News. Opinions & Tweaks

  • / news
  • / infosec
  • / tools
  • / tweaks
  • / dummies
  • / opinions
  • / support
home / News / Zoom company lies: there is no end-to-end encryption

Zoom company lies: there is no end-to-end encryption

01/04/2020 11:04 by giorgos

New day, new privacy issue for the popular Zoom app. Last night, The Intercept published a report that highlights that the claim of the Zoom application that it has end-to-end encryption for its sessions is not true.

The video conferencing company can boast of end-to-end encryption on its website, but the publication of Intercept proves that the service only uses encryption in data transfer.

zoom - Zoom company is lying: there is no end-to-end encryption

Transfer encryption is a Transform Layer Security (TLS) protocol that secures the connection between your computer and the server to which you are connected. This same encryption is used for secure connections between any HTTPS site and your browser.

The main difference between transfer encryption and end-to-end encryption is that the Zoom application (or the server to which you are connected) can see your data.

Screenshot 2020 04 01 at 11.58.37 AM - Zoom the company is lying: there is no end-to-end encryption

In a comment on The Intercept, application development company Zoom confirmed that the service does not provide end-to-end encryption at this time:

E2E encryption for Zoom video sessions cannot be enabled at this time. Live video conferencing uses a combination of TCP and UDP. TCP connections are made using AES encrypted TLS and UDP connections using a key that is traded through a TLS connection.

The company clarified that the "end-to-end" report it uses refers to Zoom endpoints on the Zoom server, which is located among the customers. Thus, it can technically control your data, while the company denies that it can access end-user data or that it sells data to third parties. It would be much fairer of course to clearly state the encryption standards they use.

This is not the first time Zoom policies have provoked reactions. A post by Bleeping Computer published today states that hackers can steal passwords users through the Windows application.

Last week found the iOS app of the service sends data to Facebook without the explicit consent of the user.

The company immediately after the revelation, removed the code that sent data to the social network. Last month, the Electronic Frontier Foundation (EFF), a non-profit organization, reported that using Zoom products can have serious consequences for your privacy.

Yesterday, the Tor browser suggest Avoid the Zoom app and use an open source app called Jitsi Meet.

Zoom company lies: there is no end-to-end encryption was last modified: 1 April, 2020, 11: 04 am by giorgos

Subscribe to our newsletter

no spam

spread the news

  • Facebook
  • Twitter
  • Reddit
  • Printing
  • Email

Read them Technology News from all over the world, with the validity of iGuRu.gr

Follow us on Google News


Competition: Newstag: zoom

You May Also Like

Zoom prepares email and calendar services
Zoom more security options
Zoom announced end-to-end encryption

About Us giorgos

George still wonders what he's doing here ...

Previous Post: « iGuRu NirSoft helps you manage Windows Defender threats
Next Post: Microsoft Edge will soon have vertical tabs Edge »

Reader Interactions

Comment Policy:

IGuRu.gr does not publish the comments immediately. Malicious comments, comments that include ads, or comments that are offensive are deleted without notice. We do not adopt the opinions expressed by our readers.
Your comments will be displayed after approval by the administrators


Leave your comment
Ακύρωση απάντησης

Your email address is not published. Τα υποχρεωτικά πεδία σημειώνονται με *

 

 © 2021 · iGuRu.gr · ☢ · Keep It Simple Stupid Genesis theme

about  ·   get in touch  ·  rss  ·  sitemap  ·  cough

loadingCancel
Could not post post - check your email address!
Email verification failed, please try again
Your blog can not post posts via email.