Following the news that Zoom is rolling out end-to-end encryption for users globally, Cybersecurity expert has provided the below comment.

Experts Comments

October 29, 2020
Tod Beardsley
Research Director
Rapid7
I'm happy to see that Zoom has started its rollout of sensible end-to-end encryption. Implementing E2EE takes a ton of work, and while the vast majority of users won't notice the change, it's great to know that Zoom employs the most current encryption standards as basic, easy-to-use functionality. That said, people like journalists and whistle-blowers should make sure they and their co-Zoomers are all using the most recent version of the Zoom client, are specifically avoiding using web client.....Read More
I'm happy to see that Zoom has started its rollout of sensible end-to-end encryption. Implementing E2EE takes a ton of work, and while the vast majority of users won't notice the change, it's great to know that Zoom employs the most current encryption standards as basic, easy-to-use functionality. That said, people like journalists and whistle-blowers should make sure they and their co-Zoomers are all using the most recent version of the Zoom client, are specifically avoiding using web client and phone dial in endpoints which do NOT support E2EE, and actually verify security codes as displayed in the new Zoom client. It only takes one Zoom participant to break the end-to-end nature of E2EE, so if you are absolutely relying on E2EE working correctly, it's critical that all participants are aware of these subtleties.  Read Less
What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.
Be part of our growing Information Security Expert Community (1000+), please register here.