In addition, there is no E2EE option when using the app’s group chat functionality. Significantly, Telegram’s default for individual chats is cloud chat, not E2EE chat. Cloud chats are encrypted between users and Telegram’s servers, but are not encrypted end-to-end. Telegram does offer an end-to-end encrypted (E2EE) chat feature, but the researchers chose to focus on the encryption used in the platform’s “cloud chats”. As the researchers put it, even though so many people around the world depend on it, “the security that Telegram offers is not well understood”. This despite the fact that Telegram is popular with “higher-risk users” like activists and protesters. They note that Telegram uses a proprietary encryption protocol (MTProto) that has not been very well studied by cryptographers. In the introduction to their research paper, they say why they decided to take a closer look at Telegram’s encryption. Martin Albrecht and Lenka Mareková work at the University of London Kenny Paterson and Igors Stepanovs at ETH Zurich. The researchers are an international team from the UK and Switzerland. Note: This article has been updated to include a statement from Telegram. The Telegram encryption vulnerabilities are detailed in a research paper to be presented at the IEEE Symposium on Security and Privacy next year. Telegram encryption vulnerabilities found by researchersĪ team of cryptographers has discovered flaws in the encryption protocol used by the Telegram messenger app.
0 Comments
Leave a Reply. |