WhatsApp is adding encrypted backups
Tech News

WhatsApp is adding encrypted backups

WhatsApp will let its greater than 2 billion customers totally encrypt the backups of their messages, the Fb-owned app announced Friday.

The plan, which WhatsApp is detailing in a white paper earlier than rolling out to customers on iOS and Android within the coming weeks, is meant to safe the backups WhatsApp customers already ship to both Google Drive or Apple’s iCloud, making them unreadable with out an encryption key. WhatsApp customers who decide into encrypted backups shall be requested to save lots of a 64-digit encryption key or create a password that is tied to the important thing.

“WhatsApp is the primary world messaging service at this scale to supply end-to-end encrypted messaging and backups, and getting there was a extremely arduous technical problem that required a completely new framework for key storage and cloud storage throughout working techniques,” Fb CEO Mark Zuckerberg mentioned in an announcement.

If somebody creates a password tied to their account’s encryption key, WhatsApp will retailer the related key in a bodily {hardware} safety module, or HSM, that is maintained by Fb and unlocked solely when the right password is entered in WhatsApp. An HSM acts like a security deposit field for encrypting and decrypting digital keys.

As soon as unlocked with its related password in WhatsApp, the HSM supplies the encryption key that in flip decrypts the account’s backup that is saved on both Apple or Google’s servers. A key saved in one in all WhatsApp’s HSM vaults will grow to be completely inaccessible if repeated password makes an attempt are made. The {hardware} itself is positioned in information facilities owned by Fb world wide to guard from web outages.

The system is designed to make sure that nobody apart from an account proprietor can acquire entry to a backup, the pinnacle of WhatsApp, Will Cathcart, advised The Verge. He mentioned the aim of letting folks create less complicated passwords is to make encrypted backups extra accessible. WhatsApp will solely know {that a} key exists in a HSM, not the important thing itself or the related password to unlock it.

The transfer by WhatsApp comes as governments world wide like India — WhatsApp’s largest market — are threatening to break the way that encryption works. “We anticipate to get criticized by some for this,” Cathcart mentioned. “That’s not new for us … I imagine strongly that governments ought to be pushing us to have extra safety and never do the other.”

WhatsApp’s announcement means the app is going a step additional than Apple, which encrypts iMessages however still holds the keys to encrypted backups; meaning Apple can help with restoration, but in addition that it may be compelled handy the keys over to legislation enforcement. Cathcart mentioned WhatsApp has been engaged on making encrypted backups a actuality for the previous couple of years, and that whereas they’re opt-in to begin, he hopes, over time, to “have this be the best way it really works for everybody.”

Related posts

Ten Billion


Microsoft president calls for antitrust scrutiny of app stores: ‘The time has come’


Windows and Windows Phone: Their worlds are colliding