Stories
Slash Boxes
Comments

SoylentNews is people

posted by martyb on Thursday April 02 2020, @11:09PM   Printer-friendly
from the too-much-privacy dept.

Elon Musk's SpaceX bans Zoom over privacy concerns-memo

[...] In an email dated March 28, SpaceX told employees that all access to Zoom had been disabled with immediate effect.

"We understand that many of us were using this tool for conferences and meeting support," SpaceX said in the message. "Please use email, text or phone as alternate means of communication."

[...] NASA, one of SpaceX's biggest customers, also prohibits its employees from using Zoom, said Stephanie Schierholz, a spokeswoman for the U.S. space agency.

The Federal Bureau of Investigation's Boston office on Monday issued a warning about Zoom, telling users not to make meetings on the site public or share links widely after it received two reports of unidentified individuals invading school sessions, a phenomenon known as "zoombombing."

Also consider that one way to claim to have "end to end encryption" is to simply re-define the term. Zoom Meetings Aren't End-to-End Encrypted, Despite Misleading Marketing:

Zoom, the video conferencing service whose use has spiked amid the Covid-19 pandemic, claims to implement end-to-end encryption, widely understood as the most private form of internet communication, protecting conversations from all outside parties. In fact, Zoom is using its own definition of the term, one that lets Zoom itself access unencrypted video and audio from meetings.

With millions of people around the world working from home in order to slow the spread of the coronavirus, business is booming for Zoom, bringing more attention on the company and its privacy practices, including a policy, later updated, that seemed to give the company permission to mine messages and files shared during meetings for the purpose of ad targeting.

Still, Zoom offers reliability, ease of use, and at least one very important security assurance: As long as you make sure everyone in a Zoom meeting connects using "computer audio" instead of calling in on a phone, the meeting is secured with end-to-end encryption, at least according to Zoom's website, its security white paper, and the user interface within the app. But despite this misleading marketing, the service actually does not support end-to-end encryption for video and audio content, at least as the term is commonly understood.

[...] Matthew Green, a cryptographer and computer science professor at Johns Hopkins University, points out that group video conferencing is difficult to encrypt end to end. That's because the service provider needs to detect who is talking to act like a switchboard, which allows it to only send a high-resolution videostream from the person who is talking at the moment, or who a user selects to the rest of the group, and to send low-resolution videostreams of other participants. This type of optimization is much easier if the service provider can see everything because it's unencrypted.

[...] "They're a little bit fuzzy about what's end-to-end encrypted," Green said of Zoom. "I think they're doing this in a slightly dishonest way. It would be nice if they just came clean."

The only feature of Zoom that does appear to be end-to-end encrypted is in-meeting text chat.

Be aware, too, of the potential for "zoombombing"; here is a selection of articles: 'Zoombombing': When Video Conferences Go Wrong, A Zoom Meeting For Women Of Color Was Hijacked By Trolls Shouting The N-Word , and Beware of 'ZoomBombing': screensharing filth to video calls.

Previously:
(2020-03-28) Now That Everyone's Using Zoom, Here Are Some Privacy Risks You Need to Watch Out For
(2020-03-27) School Quits Video Calls After Naked Man ‘Guessed’ the Meeting Link
(2020-03-14) Student Privacy Laws Still Apply if Coronavirus Just Closed Your School


Original Submission

 
This discussion has been archived. No new comments can be posted.
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
  • (Score: 5, Insightful) by Snotnose on Friday April 03 2020, @12:07AM (1 child)

    by Snotnose (1623) on Friday April 03 2020, @12:07AM (#978489)

    IMHO, if you advertise end to end encryption, then it turns out you're faking it, then, well. Not only should your app be shunned by everyone, but the Cxx suite that carried on that lie should be held personally responsible.

    --
    Why shouldn't we judge a book by it's cover? It's got the author, title, and a summary of what the book's about.
    Starting Score:    1  point
    Moderation   +3  
       Insightful=3, Total=3
    Extra 'Insightful' Modifier   0  
    Karma-Bonus Modifier   +1  

    Total Score:   5  
  • (Score: 2) by DannyB on Friday April 03 2020, @04:56PM

    by DannyB (5839) Subscriber Badge on Friday April 03 2020, @04:56PM (#978793) Journal

    c'mon mcfly the jits will never know!

    --
    People today are educated enough to repeat what they are taught but not to question what they are taught.