Following the news that Zoom is rolling out end-to-end encryption for users globally, Cybersecurity expert has provided the below comment.
Following the news that Zoom is rolling out end-to-end encryption for users globally, Cybersecurity expert has provided the below comment.
Information Security Buzz (aka ISBuzz News) is an independent resource that provides the experts comments, analysis and opinion on the latest Information Security news and topics
I\’m happy to see that Zoom has started its rollout of sensible end-to-end encryption. Implementing E2EE takes a ton of work, and while the vast majority of users won\’t notice the change, it\’s great to know that Zoom employs the most current encryption standards as basic, easy-to-use functionality. That said, people like journalists and whistle-blowers should make sure they and their co-Zoomers are all using the most recent version of the Zoom client, are specifically avoiding using web client and phone dial in endpoints which do NOT support E2EE, and actually verify security codes as displayed in the new Zoom client. It only takes one Zoom participant to break the end-to-end nature of E2EE, so if you are absolutely relying on E2EE working correctly, it\’s critical that all participants are aware of these subtleties.