|
|
|
|
|
|
by geofft
2263 days ago
|
|
|
> This product is provided as a SECURE means of communication and it IS NOT. Are you claiming that there are actual customers who believed that if they called up a Zoom conference via a phone number, their connection would be encrypted from their landline phone all the way to the other end, and were surprised to learn it was not? > With a target in mind, you now have a goal: Find a way to convince zoom to send encrypted comms to any device within reach. This attack has nothing to do with end-to-end encryption (i.e., it is equally possible against systems that are well-accepted as "end-to-end encryption," so if you're using this as a criterion, nothing is end-to-end encrypted.) That doesn't mean I don't think it's a problem. That just means I think that words have meanings, and "end-to-end encrypted" is not a synonym for "secure under the threat model I care about," and never has been, for anyone. |
|
|