CryptoDB
E2E Encryption and Identity Properties for Zoom Meetings
| Authors: | |
|---|---|
| Download: | |
| Abstract: | Zoom’s platform provides video conferencing services for hundreds of millions of daily meeting participants. They use Zoom to conduct business, learn among classmates scattered by recent events, connect with friends and family, collaborate with colleagues, and in some cases, discuss critical matters of state. Zoom is working hard to improve meeting security for its users. In May 2020, Zoom published an incrementally deployable proposal\footnote{\url{https://github.com/zoom/zoom-e2e-whitepaper}}, describing not only a design for its improved end-to-end encryption (E2EE), but also a plan to build an auditable and persistent notion of identity for all Zoom users, which will provide additional security even against active attacks from a compromised Zoom server. In this talk, I will first describe our improved end-to-end design, report on our progress deploying it, and comment on some lessons we learned along the way. Then, I will look to the future and present our vision for user identity protocols. I will argue why it matters, discuss the issues which make this problem hard, and how we plan to address them. |
| Video: | https://youtu.be/3J1cocbzPik?t=878 |
BibTeX
@misc{rwc-2021-35518,
title={E2E Encryption and Identity Properties for Zoom Meetings},
note={Video at \url{https://youtu.be/3J1cocbzPik?t=878}},
howpublished={Talk given at RWC 2021},
author={Antonio Marcedone and Maxwell Krohn and Josh Bloom and Simon Booth and Oded Gal and Julia Len and Karan Lyons and Mike Maxim and Merry Ember Mou and Jack O'Connor and Miles Steele and Matthew Green and Lea Kissner and Alex Stamos},
year=2021
}