Zoom通过端到端加密提高了用户安全性

2020-12-21 11:25:54 浏览数 (1)

Zoom周一为其在线会议网络推出了端到端加密功能后,为其用户提供了很大的安全升级。 E2EE将控制密钥的控制权交给会议组织者。在E2EE推出之前,加密是在Zoom的服务器上完成的,可以访问这些服务器的人可以截取数据。 要使用此新功能,客户必须在帐户级别启用E2EE会议,并按每次会议选择加入E2EE。 弗吉尼亚州赫恩登的应用程序安全提供商nVisium的首席执行官杰克·曼尼诺(Jack Mannino)表示:“将密钥分发给客户并分散信任,可以使用户更加确信自己的通信不太可能通过受到破坏的密钥或基础结构来拦截。 Theta Lake首席产品官Dan Nadir解释说,如果没有端到端加密,则有权访问该平台的人可能会拦截对话。ThetaLake是加利福尼亚州圣塔芭芭拉的协作平台的安全和合规性解决方案提供商。 他对TechNewsWorld表示:“这可能是不道德的员工,或者是有能力破坏系统的人。” “完整的端到端加密消除了这一潜在的漏洞。”

原文:Zoom gave its users a big security upgrade Monday when it rolled out end-to-end encryption for its online meetings network.

E2EE puts control of the keys for scrambling data in the hands of meeting organizers. Before the E2EE rollout, encryption was done on Zoom's servers, where someone with access to those servers could intercept the data。

To use the new feature, customers must enable E2EE meetings at the account level and opt-in to E2EE on a per-meeting basis.

"Distributing keys to the clients and decentralizing trust gives users increased assurance that their communications are less likely to be intercepted through compromised keys or infrastructure," Jack Mannino, CEO of nVisium, an applications security provider in Herndon, Va., told TechNewsWorld

Without end-to-end encryption, there's a possibility that someone with access to the platform could intercept conversations, explained Dan Nadir, chief product officer at Theta Lake, a security and compliance solutions provider for collaboration platforms in Santa Barbara, Calif.

"That could be an unscrupulous employee, or someone who is able to breach the system," he told TechNewsWorld. "Full end-to-end encryption eliminates this potential point of vulnerability."

0 人点赞