Hacker News new | ask | show | jobs
by vmednis 2271 days ago
I'm usually not the one for conspiracy theories and this is most likely just media outlets fixating on one topic for clicks, but sometimes this just feels like a smear campaign against Zoom. I'm sure a lot of these issues could be found for other providers as well.
2 comments
tpetry 2271 days ago
If you fucked up bad enough multiple times people will find lore. Years ago it was constant news about uber now its zoom. If a company is dishonest enough you will find enough more bad news, and as long as bad news get clicked...

But i am happy theres media attention for this exact topic because it was dishonest all the time and people have chosen zoom over other solutions because zoom is the only one claiming end to end encryption.

link
Flimm 2271 days ago
Name one provider that claims to provide end-to-end encrypted video calls but doesn't.
link
vmednis 2271 days ago
GoToMeeting claims end to end encryption[1] and in the same sentence say it's just SSL just like Zoom. Never the less they offer call-in as well so end to end becomes impossible right there. I have serious doubts about any conference software offering real end to end encryption as it's unrealistic for clients to be dealing with that many av streams.

1. https://support.goto.com/meeting/help/security-faqs-g2m05001...

link
comex 2270 days ago
End-to-end encryption doesn't require participants to receive full-quality video from everyone. Each client can be responsible for encoding their own video feed at multiple quality levels simultaneously – what WebRTC calls simulcasting. That does increase required processing power and upload bandwidth, but not to the point of infeasibility. And you do inevitably leak the identity of the person currently talking, as the server has to know whether to relay the high- or low-quality video stream for each participant to each other participant, and it can trivially tell the difference between the two based on bitrate. But that's much less bad than leaking the whole video stream.
link
jdietrich 2270 days ago
>That does increase required processing power and upload bandwidth, but not to the point of infeasibility.

Most devices now do video encoding/decoding in a dedicated hardware unit, so those additional streams will have a vastly disproportionate impact on performance and power consumption. Some desktops and high-performance laptops support multiple streams, but most mobile devices don't. It's feasible, but very much non-trivial.

link
xenonite 2270 days ago
To add on this, an encrypted stream with a variable bitrate encoding allows to guess the amount of transmitted information entropy.
link