Whatsapp has completely denied that the encrypted messages on its platform can be read. They say that the design of the app relating to message delivery, new keys being generated for offline users to ensure messages to not to get lost in transit. On Friday, the Guardian reported that a security vulnerability can be used to allow facebook to read encrypted messages that has been found within its Whatsapp messaging service. The Guardian posted a story claiming that an intentional design decision in WhatsApp that helps people from losing millions of texts or messages is a ‘backdoor’ which gives an access to governments to force Whatsapp to decrypt message streams. The statement is claimed false by the company spokesperson.
WhatsApp Denies Encrypted Messages Can Be Intercepted
Whatsapp said that it does not give government a ‘backdoor’ in the system and would go against any government asking for a backdoor.
‘the design referenced in the Guardian story secures millions of messages from being lost and WhatsApp offers people notification about security to alert them to potential security threats.
A technical white paper has been generated by WhatsApp on its technical design system and has been transparent about the government requests it receives, which publishes date about these requests in the facebook government requests report.
Tobias Boelter, a cryptography and a security researcher detected this security issue as reported by the Guardian.
‘If Government asks whatsapp to disclose its messages then it can effectively grant access due to change in keys’ Boelter quoted.
However, many security commentators have said the vulnerability claimed to be discovered is nothing new as it has been rehashing of the long standing issue of how key verification is implemented within an encrypted system.
‘If someone would demand or request to execute a backdoor, you might expect them to implement something more reasonable. Like, responding with history of all conversations when triggered to do with some secret message. Furthermore, this flaw can be taken as a programming bug,’ Boelter said.
‘So maybe it was a bug at first, but when discovered, it comes out to being used as a backdoor’.