Facing the pressure, Zoom rtropdale on the encryption from end to end

Facing the pressure, Zoom rtropdale on the encryption from end to end Cybersecurity

Confronted for several weeks by critics on the fact of reserving the end-to-end encryption of communications only to paying users, Zoom rtropdale by extending this support to all customers. The E2EE functionality will be available from next July.

The time of confinement has shown how teleworking makes it possible to maintain business continuity, without however fully replacing physical human relationships. But many companies have been able to come to the obvious, in particular those which did not think – or did not want – to register in a mode of remote work, on the practical side of the thing. Having really gained momentum in recent months, the Zoom start-up specializing in videoconferencing has managed to seduce users with its very easy to access side, both on the side of the organizer and of the user who can enter a conference. simply via a link, without installing anything on your computer. A simplicity that sometimes paid a high price, with also undeniable safety holes that the start-up has recently tried to fill.

Today, Zoom continues to regain the confidence of users, who may have been scalded by security concerns, by concretizing the integration of Keybase technology into its videoconferencing offer. In a post, Eric Yuan announced that he had updated his end-to-end encryption method which he published on GitHub. “We have identified a path that balances the legitimate right of all users to privacy and the security of users on our platform. This will allow us to offer end-to-end encryption as an additional advanced feature for all of our users around the world – free and paid – while retaining the ability to prevent and combat abuse on our platform, “said the CEO of Zoom.

PSTN telephone lines and SIP / H.323 conference systems excluded

Concretely, this E2EE function will enter beta in July 2020 and Zoom specifies that all users will continue during this time to use the AES 256 GCM encryption by default. “E2EE will be an optional feature because it limits certain meeting features, such as the ability to include traditional PSTN phone lines or SIP / H.323 hardware conference room systems,” said Zoom. Hosts will be able to enable or disable E2EE based on the meeting as well as administrators at the individual or group account level.

By acting this way, Zoom is in the nails of a 90-day strategic security plan announced by its CEO Eric Yuan who also led the company to recruit Alex Stamos, the former Facebook RSSI. Recently, the company also announced improvements to end the Zoom bombing, but also by bringing end-to-end encryption. After having indicated last month the acquisition of Keybase. The latter, which designed a solution to protect online identities, encrypt messages and shared files aimed at guaranteeing the confidentiality of communications, largely served as the basis for Zoom’s latest encryption function.

Source: www.lemondeinformatique.fr

Rate article