Skype finally getting end-to-end encryption
Since its inception, Skype has been notable for its secretive, proprietary algorithm. It's also long had a complicated relationship with encryption: encryption is used by the Skype protocol, but the service has never been clear exactly how that encryption was implemented or exactly which privacy and security features it offers.
That changes today in a big way. The newest Skype preview now supports the Signal protocol: the end-to-end encrypted protocol already used by WhatsApp, Facebook Messenger, Google Allo, and, of course, Signal. Skype Private Conversations will support text, audio calls, and file transfers, with end-to-end encryption that Microsoft, Signal, and, it's believed, law enforcement agencies cannot eavesdrop on.
Presently, Private Conversations are only available in the Insider builds of Skype.
Also at The Register, The Verge, and Wired.
Related Stories
Microsoft in talks with Discord over $10 billion-plus acquisition: report
Microsoft is in discussions with Discord to acquire the gaming-focused chat software for more than $10 billion, according to sources talking to Bloomberg. Xbox chief Phil Spencer is said to be talking to Discord about the potential deal.
VentureBeat reported earlier today that Discord was exploring a $10 billion-plus sale after multiple potential buyers expressed interest, and that it had signed an exclusive acquisition discussion with one party, suggesting a deal could be close. Bloomberg's sources say the deal isn't imminent, however, with one person saying Discord would be more likely to take itself public than seek an acquisition.
Bloomberg names Epic Games and Amazon as companies that have also held discussions with Discord in the past.
"Discord is a Voice over Internet Protocol (VoIP), instant messaging and digital distribution platform designed for creating communities."
The new Skype?
Also at Ars Technica, Bloomberg, and c|net.
Related:
Microsoft Office and Skype to be Preinstalled on More Android Devices
Microsoft Adds Signal Protocol End-to-End Encryption to Skype
Discord Takes Down "Deepfakes" Channel, Citing Policy Against "Revenge Porn"
How Microsoft Turned Consumers Against Skype
Discord Confirms Layoffs After Internal Restructuring
Discord 'Spidey Bot' Malware Is Stealing Usernames, Passwords on Windows
Slack Has Filed an Antitrust Complaint Over Microsoft Teams in the EU
Wormable, Zero-Click Vulnerability in Microsoft Teams
(Score: 4, Insightful) by Anonymous Coward on Friday January 12 2018, @04:44PM (6 children)
Now, if everyone would just move back to an open standard so there is no funny business going on, and then federate so you can use whatever client you want to get to anyone else you want.
(Score: 1, Informative) by Anonymous Coward on Friday January 12 2018, @04:50PM (2 children)
You mean like Matrix.org
(Score: 4, Informative) by Anonymous Coward on Friday January 12 2018, @05:17PM (1 child)
is a clusterfucked json implementation of the xml definition for jabber.
And from everyone I've heard who has looked at the source code, they recommend something else.
Also Matrix only has like 3-5 years of legitimacy while XMPP/Jabber has almost 20 now, despite being fucked over by every big company that has used it, and chose instead to roll it back to a walled garden.
(Score: 0) by Anonymous Coward on Friday January 12 2018, @05:53PM
and it's coincidentally not secure "yet"...
(Score: 0) by Anonymous Coward on Friday January 12 2018, @06:00PM
facebook used to federate, same with google
then they realized that was like a big bunch of holes in their walled garden and shut that down
also the signal website is pretty rad. they have a quote from snowden as their first promo and his picture makes him look like he's losing a pinchloaf struggle
(Score: 3, Interesting) by Grishnakh on Friday January 12 2018, @06:14PM (1 child)
Yeah, good luck with that pipe dream. That'll happen right before people stop giving Facebook all their personal info and trusting their privacy to Zuckerberg, and move to Diaspora where they can have total control over what they post and who sees it and who hosts it.
The thing the dystopian sci-fi stories of the past always failed to predict and depict well was how people would happily *choose* to give up their freedom and privacy, even when viable alternatives were present, and had even been the norm previously.
(Score: 2) by legont on Friday January 12 2018, @07:23PM
I beg to differ - Karl Marx predicted it all.
Even more... capitalists would give up all the money? Check; done by Nixon. Capitalists would give up all their factories? In progress - central banks are buying and everybody wants more of it. Workers own the factories? In progress as companie's managers will be the only workers and robots would do the rest.
"Wealth is the relentless enemy of understanding" - John Kenneth Galbraith.
(Score: 2) by bob_super on Friday January 12 2018, @06:28PM (3 children)
You mean that Microsoft can actually add potentially useful features to skype, instead of just pushing go-ugly hide-functionality non-backwards-compatible updates every other week ?
(Score: 3, Informative) by frojack on Friday January 12 2018, @07:43PM (2 children)
No, I'm sure it doesn't mean that at all.
Microsoft has systematically added full-take capabilities for any account printed on a warrant. They have systematically built in compromise capabilities into skype the minute they bought it from Ebay (who were only too happy to get rid of it due to federal meddling and demands) .
Contrary to the story, the encryption capabilities of the pre-ebay skype were fully known. (Reverse engineered). They were never perfect. But because session routing was never stable and predictable in advance, this didn't matter so much.
Microsoft now forced all call setup through its own servers [cnn.com]. (The actual call session may be routed client to client unless some three letter agency has a warrant (or a wish) in which case its all routed via a Microsoft servers. Dozens of little changes [microsoft.com] creep in each year. As of 2015, and the arrival of Skype for Business, there is must about nothing left of the original skype except the ring-tones.
Skype departed ALL my devices the day Microsoft bought them.
No, you are mistaken. I've always had this sig.
(Score: 0) by Anonymous Coward on Friday January 12 2018, @07:57PM (1 child)
maybe it means that it was the end of the encryption from point to point and the only thing left is that we still use it so they say marketing things?
i agree with everything you said. my mom doesn't care though. and i am a bad kid for not talking to her with it because I have something wrong if I am afraid of that.
i feel like will smith sometimes
(Score: 0) by Anonymous Coward on Friday January 12 2018, @09:36PM
You made your son into a weirdo.
(Score: 5, Insightful) by mmh on Friday January 12 2018, @06:29PM (3 children)
Yes, lets all trust Microsoft to provide us with End-to-End encryption. The same Microsoft that is known to work closely with the NSA and participates in the PRISM program.
https://en.wikipedia.org/wiki/PRISM_%28surveillance_program%29 [wikipedia.org]
https://en.wikipedia.org/wiki/NSAKEY [wikipedia.org]
(Score: 0) by Anonymous Coward on Friday January 12 2018, @06:37PM
yeah i was going to say
i wasnt sure if this post was a joke or serious or somewhere in between
i think half the users here dont know why it'd be a joke so i am glad you posted the links.
that day when skype went down with a major outage for the first time since MS took it over...anyone that was anyone knew what that meant
this just means now you are to be prevented from seeing what your computer is sending and receving, and they're calling it privacy. yay freedom
(Score: 2) by Bot on Friday January 12 2018, @08:45PM
> Yes, lets all trust Microsoft to provide us with End-to-End encryption.
Well, considering that they are unable to do an
if processor type = AMD
then return
else apply meltdown&spectre patches
I am hopeful that their end to end encryption is safe. Because it has backdoors, but they probably do not work. Never attribute to malice what can be adequately explained by malice and incompetence.
Account abandoned.
(Score: 1) by bobthecimmerian on Saturday January 13 2018, @01:31AM
Their headquarter are in the US, do you really think they could tell the NSA no?
I'm not saying I like Microsoft. I don't. But this is something no company can escape. If you want reliably private communications, you need open source that's been audited by security researchers.
(Score: 2, Interesting) by Anonymous Coward on Friday January 12 2018, @07:17PM (1 child)
My guess is the only time it was hard to spy on Skype conversations was before Microsoft bought it (for 8 billion IIRC).
I remember the original Skype was reasonably P2P in most cases. When I sent a message and the person wasn't online, the message would actually be queued up on my computer and only sent when both of us were on line.
But after Microsoft bought it, there was no such queuing - the messages went to Microsoft's servers... That was the end of harder to eavesdrop on P2P messaging on Skype.
(Score: 1, Informative) by Anonymous Coward on Friday January 12 2018, @07:54PM
yup. you probabyl remember the day it went down when that all happened
(Score: 2, Insightful) by Anonymous Coward on Friday January 12 2018, @08:12PM (4 children)
It is Microsoft, why go there?
It is skype, why go there?
Just walk away from the monster.
(Score: 2, Interesting) by Apparition on Friday January 12 2018, @09:17PM (3 children)
Inertia, that's why.
I've tried to convince family and friends to dump Skype and/or iMessage for a few years now, in favor of Telegram and/or Wire. Only one person has. The rest haven't. Some however have switched to Facebook Messenger, but that's even worse IMO. Why have they stuck with Skype/iMessage/Facebook Messenger? Because "everyone else uses it." If I start talking about the privacy implications and how Telegram and/or Wire has better privacy, they start looking at me like I'm a paranoid schmoe. "Who cares? I have nothing to hide."
Privacy and encryption are great, but if no one else is there to use it...
(Score: 1, Insightful) by Anonymous Coward on Saturday January 13 2018, @01:20AM
You need a front end that is more userfriendly than [Skype | iMessage], which tries to use [Signal | Telegram | Wire], but transparently drops back to [Skype | iMessage] when it has to.
You will never get most people to switch based on what they see as tin-foil-hattery, especially if it makes things more difficult to use.
You could get them to switch to an easier to use, more capable program, that just happens to have user-friendly encryption built in.
(Score: 1) by bobthecimmerian on Saturday January 13 2018, @01:35AM
I had the same problem. But I hit on a partial solution. http://www.tristanharris.com/2016/05/how-technology-hijacks-peoples-minds%e2%80%8a-%e2%80%8afrom-a-magician-and-googles-design-ethicist/ [tristanharris.com] -- instead of convincing other people or even myself to get off hosted networks because of valid but nebulous and difficult to quantify and value concerns around privacy, consider the very real and blatantly obvious addictive designs of these tools. I got hooked on Facebook despite my ethical objections, and spent more and more time there even as I grew more lonely and miserable. I deleted all my content and left a link to that article as my only activity on the site.
(Score: 2) by MichaelDavidCrawford on Saturday January 13 2018, @04:22AM
He was the valedictorian of his high school, has a master's from Harvard, can code in fortran but cannot figure out how to use email
So we use Facebook
Yes I Have No Bananas. [gofundme.com]
(Score: 2, Interesting) by cwadge on Saturday January 13 2018, @03:05AM
(Score: 0) by Anonymous Coward on Saturday January 13 2018, @03:23PM
By whom?
I call bullshit. I'd enumerate the reasons, but why help such an obvious con revise itself to look more legit?