[Cryptography] NSA security guidelines for videoconferencing
jamesd at echeque.com
jamesd at echeque.com
Sat May 2 00:47:50 EDT 2020
On 2020-05-02 04:55, Henry Baker wrote:
> FYI --
>
> https://www.hstoday.us/subject-matter-areas/cybersecurity/to-zoom-or-whatsapp-nsa-lays-out-security-details-of-videoconferencing-services-for-teleworkers/
>
> To Zoom or WhatsApp?
>
> NSA Lays Out Security Details of Videoconferencing Services for
> Teleworkers
I notice that Skype is listed as end to end encrypted, though it is
apparent that every skype interaction is scanned for content.
Skype suffers undue delays, because packets are not sent end to end, but
through a center or small number of centers, which became grossly
overloaded when large numbers of people started to work at home.
According to
https://www.comparitech.com/blog/information-security/is-skype-safe-and-secure-what-are-the-alternatives/
Skype doesn’t use end-to-end encryption at all. That means every
message, call, and file can be viewed by Microsoft.
Voice, video, text, and files sent between Skype users are encrypted,
but only between your device and Microsoft’s servers. That data is
decrypted once it reaches the server, allowing Microsoft to snoop if it
so pleases.
I therefore, knowing Skype to be insecure, did not bother scanning the
rest of their recommendations.
More information about the cryptography
mailing list