Endwwall 05/08/2020 (Fri) 21:45:14 No.1530 del
(36.81 KB 878x660 Zoom5_AES256_ECB.png)
Zoom
I have to use this for school and for my part time job. It uses AES-256 bit in ECB mode. And was generating the session keys on servers in China. I've added a picture from zoom 5.0 on windows 10.

https://en.wikipedia.org/wiki/Block_cipher_mode_of_operation

https://theintercept.com/2020/04/03/zooms-encryption-is-not-suited-for-secrets-and-has-surprising-links-to-china-researchers-discover/

"The report points out that Zoom may be legally obligated to share encryption keys with Chinese authorities if the keys are generated on a key management server hosted in China. If the Chinese authorities or any other hypothetical attacker with access to a key wants to spy on a Zoom meeting, they also need to either monitor the internet access of a participant in the meeting, or monitor the network inside the Zoom cloud. Once they collect the encrypted meeting traffic, they can use the key to decrypt it and recover the video and audio."

Post any other relevant information here or in the security news section. I feel that this is a massive error that people are making using this software.