- ‘Lil Billie Xanish’ is the deepfake mashup of Billie Eilish and Lil Xan 3 Years Ago
- Gossip account the Shade Room to launch 3 original series on Instagram 3 Years Ago
- Biden says he asked Obama not to endorse him—but people aren’t buying it Today 3:17 PM
- Marvel makes more money than Harry Potter and Star Wars combined Today 3:13 PM
- ‘Avengers: Endgame’: Obituaries for the fallen heroes Today 2:51 PM
- T-Mobile, Verizon admit most Americans won’t see fast 5G Today 1:52 PM
- PlayStation Vue is offering a sweet streaming deal for a limited time Today 1:42 PM
- Twitter reportedly worried banning white nationalists would also flag some Republicans Today 1:31 PM
- Lawyer of cop in viral assault case calls the crime a ‘Facebook misdemeanor’ Today 12:33 PM
- Biden’s ‘all men’-focused announcement gets roasted Today 11:49 AM
- Skillshare is offering new users one month of premium for free Today 10:44 AM
- Report: Facebook is punishing Black people for talking about racism (updated) Today 10:15 AM
- Biden brings tepid language to the healthcare debate Today 9:52 AM
- TikTok’s ‘chin on palm’ challenge has people scratching their heads Today 9:01 AM
- How to stream the 2019 NFL Draft for free Today 9:00 AM
Viber just implemented end-to-end encryption, but is it secure?
Security experts are suspicious of any encryption that a company won’t discuss.
But how is Viber implementing its encryption? What technology is it using? The company won’t say.
When Facebook-owned WhatsApp announced its end-to-end encryption feature, it provided technical details of the new security architecture. It teamed up with encryption luminary Moxie Marlinspike, who developed one of the most highly regarded encryption protocols, Signal.
Viber, on the other hand, won’t say how it added encryption to its product.
“We built [Viber’s encryption protocol] based on the concept of an established open-source solution with an extra level of security developed in-house,” a Viber spokesperson told the Daily Dot.
When asked multiple times on which protocol Viber based its encryption, the spokesperson said that it was “elect[ing] not to disclose at this time.”
Matthew Green, a computer-science professor at John Hopkins University and a leading cryptographer, was skeptical of Viber’s reluctance to discuss its encryption protocol.
“The only reason I can think of is that it’s some custom hack an engineer threw together as a side project. Custom protocols are never a good idea,” said Green, who recently led a team that discovered a critical encryption bug in Apple‘s iMessage app. “It may use something standard but I don’t recognize any of it. Kind of sketchy.”
Some encryption protocols are more secure than others, and it benefits users to know how exactly their private messages are being secured.
Last year, the encryption in popular messaging app Telegram received criticism after the company revealed that it had developed the protocols in-house.
Cryptographers worry about proprietary encryption standards because they are not open-source and available for public auditing, a process that improves encryption code by letting anyone hunt for flaws.
Viber said it had performed multiple internal audits but had yet to allow an external one.
Once named one of Forbes’ 20 Under 20 and hired as a staff writer for the Daily Dot when he was still a senior in high school, William Turton is a rising tech reporter focusing on information security, hacking culture, and politics. Since leaving the Daily Dot in April 2016, his work has appeared on Gizmodo, the Outline, and Vice News Tonight on HBO.