[liberationtech] Zoom’s Encryption Is “Not Suited for Secrets” and Has Surprising Links to China, Researchers…

Paul Gardner-Stephen paul at servalproject.org
Mon Apr 6 10:15:17 CEST 2020 

Hello,

If you can estimate the packet loss on a link, you could use network coding
to cover any % of packet loss, at a similar % increase in data usage and
slight increase in latency.  Let me know if you need more info, and I can
dig up the info on the algorithm.  It works great, for example, to get
stable video over 3G networks that are notorious for packet dropping.

Paul.

On Mon, 6 Apr 2020 at 12:34, Aaron van Meerten <aaron.van.meerten at gmail.com>
wrote:

> I don’t believe the encryption/decryption is all that resource intensive
> in comparison to the encoding and decoding of the video and audio streams
> themselves.
>
> We have a few features to try to deal with this, including audio-only mode
> and the ability to send lower-quality video (Low bandwidth mode)
>
> I do know we suffer from poor performance on connections for which packet
> loss/packet drops are common.
>
> However, my role in the team (DevOps) is such that I won’t be able to
> speak very coherently about why that is or what specifically we do to
> handle this situations.
>
> If you have specific questions about those features, you can ask on our
> community forums here:
>
> https://community.jitsi.org/
>
> Our (fairly small) team does monitor these and tries to answer as best we
> can.
> If you don’t get a response, feel free to ping me and I can try to poke
> the appropriate team member based on your question.
>
> Cheers,
>
> -Aaron
>
>
>
> On Apr 4, 2020, at 4:10 PM, Jose Luis Mendoza Marquez <
> jluismendoza at gmail.com> wrote:
>
> And this represents a very big sacrifice of resources in the connection?
> My problem with jitsi so far has been that it does not work very well if
> either end has a bad internet connection, which is more or less common in
> Latin America.
>
>
>
> ___________________________________________________________________
>
>
>
> José Luis Mendoza Marquez
> *Consultor*
> mobile: +56932900765
> mobile: +584145858378
> site: about.me/jluismendozam
>
> email: jluismendoza at gmail.com
> ORCID: 0000-0002-9303-7448
> <http://www.linkedin.com/in/joselmendozam>
> <https://twitter.com/joselmendozam>
> <https://es.quora.com/profile/Jose-Luis-Mendoza-Marquez>
> <https://www.instagram.com/joselmendozam/>
> <https://es.gravatar.com/jluismendoza>
> IMPORTANTE: El contenido de este correo electrónico y cualquier archivo
> adjunto son confidenciales. Está estrictamente prohibido compartir
> cualquier parte de este mensaje con un tercero, sin el consentimiento por
> escrito del remitente. Si recibió este mensaje por error, responda a este
> mensaje y continúe con su eliminación, para que podamos asegurarnos de que
> dicho error no ocurra en el futuro. Por favor considere siempre
> presentaciones y alternativas digitales que no requieran impresión y sean
> mas amigables con el planeta. La integridad y seguridad de este correo
> electrónico no se puede garantizar a través de Internet. Por lo tanto,
> el  remitente no será responsable de ningún daño causado por el mensaje.
>
>
>
> El sáb., 4 de abr. de 2020 a la(s) 14:38, Aaron van Meerten (
> aaron.van.meerten at gmail.com) escribió:
>
>> You’re correct.  For p2p calls it is end to end.  For non-p2p calls, the
>> bridge decrypts from each sender in memory and re-encrypts to each receiver.
>>
>> The idea is to expand this to allow packets to also be encrypted on each
>> client so the bridge would have no access to the content even for non-p2p
>> calls.
>>
>> -Aaron
>>
>> On Apr 4, 2020, at 12:22 PM, Federico Guerrini <
>> federico.guerrini at hushmail.com> wrote:
>>
>> Hello Aaron,
>>
>> Forgive my ignorance, but I'm a bit confused, I thought Jitsi already had
>> end-to-end, at least for P2P calls?
>>
>> "Jitsi meetings can operate in 2 ways: peer-to-peer (P2P) or via the
>> Jitsi Videobridge (JVB). This is transparent to the user. P2P mode is only
>> used for 1-to-1 meetings. In this case, audio and video are encrypted all
>> the way from the sender to the receiver, even if they traverse network
>> components like TURN servers."
>>
>> https://jitsi.org/news/security/
>>
>> Did I get it wrong?
>>
>> Kind regards,
>>
>> Federico
>>
>>
>>
>>
>> On 3/4/2020 at 10:03 PM, "Aaron van Meerten" <aaron.van.meerten at gmail.com>
>> wrote:
>>
>> We on the Jitsi team are working on such features.  Check out
>> https://jitsi.org/ or our flagship deployment https://meet.jit.si/
>>
>> We hope to be layering on end-to-end encryption features, and would
>> happily take community contributions.
>>
>> Cheers,
>>
>> -Aaron
>>
>> On Apr 3, 2020, at 2:56 PM, Yosem Companys <ycompanys at gmail.com> wrote:
>>
>> Hey all,
>>
>> Read the Intercept article in the link below.
>>
>> Seems like we need a truly encrypted and open-source Zoom alternative.
>>
>> Anyone interested in developing one? Email me privately.
>>
>> And please share with your million closest friends.
>>
>> Thank you,
>> Yosem
>>
>>
>> https://theintercept.com/2020/04/03/zooms-encryption-is-not-suited-for-secrets-and-has-surprising-links-to-china-researchers-discover/
>>
>>
>> --
>> Liberationtech is public & archives are searchable from any major
>> commercial search engine. Violations of list guidelines will get you
>> moderated: https://lists.ghserv.net/mailman/listinfo/lt. Unsubscribe,
>> change to digest mode, or change password by emailing
>> lt-owner at lists.liberationtech.org.
>>
>>
>>
>>
>> --
>> http://www.forbes.com/sites/federicoguerrini/
>>
>>
>> http://reutersinstitute.politics.ox.ac.uk/publication/newsroom-curators-and-independent-storytellers
>>
>> www.federicoguerrini.com
>>
>> My latest book: Content Curation (Italian)
>>
>> http://www.amazon.it/Content-Curation-Federico-Guerrini/dp/8820366126
>>
>>
>> --
>> Liberationtech is public & archives are searchable from any major
>> commercial search engine. Violations of list guidelines will get you
>> moderated: https://lists.ghserv.net/mailman/listinfo/lt. Unsubscribe,
>> change to digest mode, or change password by emailing
>> lt-owner at lists.liberationtech.org.
>
>
> --
> Liberationtech is public & archives are searchable from any major
> commercial search engine. Violations of list guidelines will get you
> moderated: https://lists.ghserv.net/mailman/listinfo/lt. Unsubscribe,
> change to digest mode, or change password by emailing
> lt-owner at lists.liberationtech.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ghserv.net/pipermail/lt/attachments/20200406/59284e59/attachment-0001.html>

More information about the LT mailing list