Zoom still claims ability to “secure a meeting with end-to-end encryption”

The website does not just say &quot;end-to-end&quot; and leave it open to interpretation. It goes into some detail of how it works:<p>&gt; End-to-End Chat Encryption allows for a secured communication where only the intended recipient can read the secured message. Zoom uses both asymmetric and symmetric algorithms to encrypt the chat session. Session keys are generated with a device-unique hardware ID to avoid data being read from other devices.<p>This contradicts their previous statement[1] that end-to-end encryption means from the client to the browser. Surely the &quot;recipient&quot; of the communication is not zoom, but the other person you are talking to, right?<p>[1] <a href="https:&#x2F;&#x2F;theintercept.com&#x2F;2020&#x2F;03&#x2F;31&#x2F;zoom-meeting-encryption&#x2F;" rel="nofollow">https:&#x2F;&#x2F;theintercept.com&#x2F;2020&#x2F;03&#x2F;31&#x2F;zoom-meeting-encryption&#x2F;</a>

It appears that the stuff about there only being TLS as far as the servers is wrong. There is encryption and it goes all the way to the ends. That&#x27;s all you need these days to claim e2ee it seems. It doesn&#x27;t matter that the company making the claim can easily decrypt the data.<p>It&#x27;s all a black box all the way down to the closed source clients. This whole discussion seems kind of pointless. Crap is crap.

Entirely shoot from the hip comment, but at this point I feel it&#x27;s warranted..<p>What is with all the Zoom hate? The company have been around for a decade, enjoyed relatively mediocre success until the outbreak of Covid, and suddenly apparently since they&#x27;re experiencing huge demand and press coverage, every man and his dog is finding reasons to write a blog post complaining about them.<p>I&#x27;ve read some article splitting hairs over the nuances of &quot;end to end encryption&quot; and how Zoom is so horrible, evil and wrong because they, like almost every telecommunication provider under the sun, can intercept your calls. What makes Zoom so special?<p>What&#x27;s driving all this hate? Because it&#x27;s a far more interesting question than what technical flaws Zoom, or any other product in this category, almost certainly suffer from.<p>Has someone done any security analysis of Houseparty? It&#x27;s experienced surge growth in the same period. But in the time I&#x27;ve seen maybe 20 Zoom-hate articles on HN I haven&#x27;t seen a single mention of Houseparty. What about Google Hangouts: is it &quot;end&quot;-to-&quot;end&quot; &quot;encrypted&quot;? What about its recording feature? Where are the articles? Where is all the hate?<p>Why?

Fake it &#x27;till you make it!

They are behind with their responses, what about the ECB usage?<p><a href="https:&#x2F;&#x2F;citizenlab.ca&#x2F;2020&#x2F;04&#x2F;move-fast-roll-your-own-crypto-a-quick-look-at-the-confidentiality-of-zoom-meetings&#x2F;" rel="nofollow">https:&#x2F;&#x2F;citizenlab.ca&#x2F;2020&#x2F;04&#x2F;move-fast-roll-your-own-crypto...</a><p>That by itself might render encryption claims from Zoom as meaningless.