Read on Twitter
The article’s assertion that end to end encryption is impossible for a group call is incorrect.
All one has to do to facilitate this is to establish a symmetrical session key for each call for all the devices without the server’s knowledge. That’s totally doable. https://twitter.com/thewaythingsar1/status/1252613524842414090
All one has to do to facilitate this is to establish a symmetrical session key for each call for all the devices without the server’s knowledge. That’s totally doable. https://twitter.com/thewaythingsar1/status/1252613524842414090
If this wasn’t possible, or the quality was to be degraded, Zoom itself wouldn’t work very well, as it uses TLS 1.3.
This establishes a session key to encrypt data in transit, the only difference being that the server *does* have knowledge of it.
This establishes a session key to encrypt data in transit, the only difference being that the server *does* have knowledge of it.
Now, there’s an argument to be made that that the compression done by client devices will be inherently less powerful/efficient than that facilitated by powerful servers.
But frankly, I don’t think that’s material anymore. In 2020, most devices are powerful enough to handle it.
After all, they only have to encrypt and compress their own streams.
After all, they only have to encrypt and compress their own streams.
Having said all of that:
If one desires the complete feature set of Zoom (server-side recordings, phone dial-in, etc), yes end-to-end encryption is impossible.
If one desires the complete feature set of Zoom (server-side recordings, phone dial-in, etc), yes end-to-end encryption is impossible.
It’s also worth mentioning that Wire is not Apple’s product, and it is completely open-source, so trusting it is a much easier sell than trusting FaceTime.
