- Trump randomly calls for companies to ‘step up’ their 5G efforts in U.S. 3 Years Ago
- Professional media person: Poor people have money but they just waste it on ‘benders’ 3 Years Ago
- Netflix acquires highest-grossing blockbuster of 2019 (so far) Today 9:29 AM
- Ocasio-Cortez blasts media over home reports after Coast Guard member’s hit list revealed Today 8:52 AM
- Are you being harassed by a Bernie Bro or a Bernie bot? Today 7:30 AM
- Jason Reitman is empowering toxic ‘Ghostbusters’ fanboys Today 6:55 AM
- The Twitter accounts taking on journalism’s straight, white, cis male problem Today 6:30 AM
- 12 essential Amazon Echo accessories for your smart home Today 6:00 AM
- How to watch ‘A Place to Call Home’ online for free Today 5:30 AM
- Report: Disney yanks YouTube ad spending following child exploitation accusations Wednesday 7:56 PM
- These people are organizing Fyre Fest live-action role-play parties Wednesday 6:35 PM
- White woman berates Mexican restaurant manager for speaking Spanish Wednesday 4:12 PM
- In Pixar short ‘Kitbull,’ a cat and pit bull become unlikely friends Wednesday 3:48 PM
- Stop exploiting the Jussie Smollett case to discredit LGBTQ hate crime victims Wednesday 3:28 PM
- The best Netflix original movies of 2019 Wednesday 3:20 PM
Viber just implemented end-to-end encryption, but is it secure?
Security experts are suspicious of any encryption that a company won’t discuss.
But how is Viber implementing its encryption? What technology is it using? The company won’t say.
When Facebook-owned WhatsApp announced its end-to-end encryption feature, it provided technical details of the new security architecture. It teamed up with encryption luminary Moxie Marlinspike, who developed one of the most highly regarded encryption protocols, Signal.
Viber, on the other hand, won’t say how it added encryption to its product.
“We built [Viber’s encryption protocol] based on the concept of an established open-source solution with an extra level of security developed in-house,” a Viber spokesperson told the Daily Dot.
When asked multiple times on which protocol Viber based its encryption, the spokesperson said that it was “elect[ing] not to disclose at this time.”
Matthew Green, a computer-science professor at John Hopkins University and a leading cryptographer, was skeptical of Viber’s reluctance to discuss its encryption protocol.
“The only reason I can think of is that it’s some custom hack an engineer threw together as a side project. Custom protocols are never a good idea,” said Green, who recently led a team that discovered a critical encryption bug in Apple‘s iMessage app. “It may use something standard but I don’t recognize any of it. Kind of sketchy.”
Some encryption protocols are more secure than others, and it benefits users to know how exactly their private messages are being secured.
Last year, the encryption in popular messaging app Telegram received criticism after the company revealed that it had developed the protocols in-house.
Cryptographers worry about proprietary encryption standards because they are not open-source and available for public auditing, a process that improves encryption code by letting anyone hunt for flaws.
Viber said it had performed multiple internal audits but had yet to allow an external one.
Once named one of Forbes’ 20 Under 20 and hired as a staff writer for the Daily Dot when he was still a senior in high school, William Turton is a rising tech reporter focusing on information security, hacking culture, and politics. Since leaving the Daily Dot in April 2016, his work has appeared on Gizmodo, the Outline, and Vice News Tonight on HBO.