Buzz
To start using E2EE when joining new meetings during this deployment phase, participants will need to use Zoom's desktop version, mobile app, or Zoom Rooms.
Users will know their meetings are E2EE encrypted when they see the green shield logo with a lock icon displayed in the top left corner of the window. Max Krohn, Head of Zoom's Network Security Department, stated: 'We are pleased to announce that starting next week, Zoom's end-to-end encryption (E2EE) service will be deployed as a preview in Technical Review format. This means we will actively seek feedback from users in the first 30 days. Zoom users, both paid and free worldwide, can host E2EE encrypted meetings with up to 200 participants in Zoom, enhancing security and privacy for your Zoom sessions.'
For those who haven't successfully installed Zoom on their computers, check out how to download and install Zoom below.
- Learn more: How to download ZOOM on your computer
1. Zoom E2EE and its current drawbacks
All E2EE encryption keys are generated by participants' devices rather than Zoom's private servers. Consequently, neither Zoom nor any third party can decrypt the exchanged data except for each meeting participant.
Krohn explains, 'In regular meetings, Zoom's cloud generates encryption keys and distributes them to participants through the Zoom app as they join. With Zoom E2EE, the meeting host generates encryption keys and uses public-key cryptography to distribute these keys to other participants. Zoom servers become passive relays and never possess the necessary encryption keys to decrypt meeting content.'
To start using E2EE when joining Zoom meetings, users need to enable end-to-end encryption in their accounts and choose to join E2EE meetings on a per-meeting basis.
Although E2EE enhances security, privacy, and data protection for Zoom meetings, activating it limits certain features, including pre-host joining, cloud recording, live streaming, real-time transcription, Breakout Rooms, polls, private 1:1 chat, and reactions in meetings.
2. Risk-based authentication for free/basic users
The initial cryptography design for Zoom's E2EE service was released on GitHub on May 22, with the second update version uploaded on June 17.
The option of E2EE encrypted meetings was first announced in May 2020 as a feature exclusively for paid customers, while free users only had access to 256-bit GCM encryption.
This plan was revised in June when Eric S - Zoom's CEO, stated that free users would also be able to use E2EE after verifying their accounts through additional identification steps such as providing their phone number.
He stated, 'We are confident that by implementing risk-based authentication along with the integration of our existing tools, including collaborating with human rights and child protection organizations, as well as the ability to lock meetings, report user abuse, and countless other features provided as part of our security system, we can continue to enhance safety for users.'
Zoom plans the next phase of E2EE deployment to commence in 2021, with the addition of Single Sign-On (SSO) integration and improved identity management capabilities.
In addition, Snapchat has just announced a new version of Lens Studio, enabling designers to create special lenses to work with LiDAR scanners. Currently, this feature only works on iPhone 12 Pro and iPhone 12 Pro Max.
