Security News > 2020 > June > Zoom Restricts End-to-End Encryption to Paid Users

Security experts are up in arms after learning that video conferencing app Zoom will only offer end-to-end encryption to paid users.

On Zoom's Wednesday first-quarter financial earnings call, Zoom CEO Eric Yuang said that the upcoming end-to-end encryption feature would not apply for free users.

"Zoom's AES 256 GCM encryption is turned on for all Zoom users - free and paid," a Zoom spokesperson told Threatpost.

Zoom previously said that it offered end-to-end encryption, but that marketing claim came into question after a report from The Intercept said that Zoom's platform actually uses transport layer security encryption, providing only encryption between individual users and service providers instead of encrypting communication directly between the users of a system.

The platform began to roll out plans for end-to-end encryption in May, starting with the acquisition of a small startup called Keybase in hopes of providing more robust encryption for Zoom calls; the company said at the time that the feature would be opt-in on paid subscriptions, but didn't elaborate.

News URL

https://threatpost.com/zoom-end-to-end-encryption-paying-users/156286/