undefined | Better HN

0 pointsluckylion5y ago0 comments

> But this blog post explains that if you don't have any external connector attached, it in fact is end-to-end encrypted, no false advertising.

No, it says that they don't decrypt it until it reaches the other client, not that they can't decrypt it.

0 comments

Thorrez5y ago

I now agree with your point that it's not really e2e encrypted, because they never claim they don't have the key.

But I don't think "can't decrypt it" is necessarily a requirement for e2e encryption. Maybe can't decrypt it with a passive attack. With an active attack it's possible to decrypt even e2e encrypted stuff assuming there's no out of band key exchange. Most Zoom users won't bother with an out of band key exchange.

j / k navigate · click thread line to collapse

0 pointsluckylion5y ago0 comments

> But this blog post explains that if you don't have any external connector attached, it in fact is end-to-end encrypted, no false advertising.

No, it says that they don't decrypt it until it reaches the other client, not that they can't decrypt it.

0 comments

Thorrez5y ago

I now agree with your point that it's not really e2e encrypted, because they never claim they don't have the key.

j / k navigate · click thread line to collapse