Top security expert: 'There is no WhatsApp backdoor'
WhatsApp redesigned its backend earlier this year so that every message sent using the service will be protected in a way that even WhatsApp would not be able to read it if it wanted to, called end-to-end encryption.
But a Guardian report published on Friday cast doubt on WhatsApp's security, saying that a "vulnerability" or "backdoor" existed that could allow governments to snoop on people's private messages.
Don't worry. There is no backdoor like the FBI was seeking for the iPhone in WhatsApp.
Moxie Marlinspike, the founder of Open Whisper Systems, which helped designed WhatApp's security protocol, shot back in a long and detailed blog post on Friday.
Cryptography is detail-oriented and complicated, and often summaries can get important aspects wrong, but here goes: Messaging systems need to know if the person it's sending a message to is actually who he says he is.
But WhatsApp decided that if one messenger changed his security key, then it would simply give the user a warning - instead of blocking him entirely like some secure messengers do, it would simply display a warning, like this:
This decision led The Guardian to speculate that a government might be able to pull off "man-in-the-middle" attacks and hijack messages meant for another person.
Marlinspike explains:
Most end-to-end encrypted communication systems have something that resembles this type of verification, because otherwise an attacker who compromised the server could lie about a user's public key, and instead advertise a key which the attacker knows the corresponding private key for. This is called a "man in the middle" attack, or MITM, and is endemic to public key cryptography, not just WhatsApp.
In fact, WhatsApp made a security choice based on usability, because it has 1 billion users, and shutting down people's conversations could be annoying for its users. Even worse, it could make the entire system less secure. Cryptographers have to make trade-offs all the time.
Given the size and scope of WhatsApp's user base, we feel that their choice to display a non-blocking notification is appropriate. It provides transparent and cryptographically guaranteed confidence in the privacy of a user's communication, along with a simple user experience. The choice to make these notifications "blocking" would in some ways make things worse. That would leak information to the server about who has enabled safety number change notifications and who hasn't, effectively telling the server who it could MITM transparently and who it couldn't; something that WhatsApp considered very carefully.
If you're worried about the privacy of your communications, WhatsApp remains a better choice than many of its alternatives, such as Telegraph. However, for users that want best-in-class, Open Whisper Systems' Signal messenger usually optimizes for security, not usability, and it remains whistleblower Edward Snowden's favorite messenger.
WhatsApp provided the following comment to Business Insider:
The Guardian's story on an alleged "backdoor" in WhatsApp is false.
WhatsApp does not give governments a "backdoor" into its systems.
WhatsApp would fight any government request to create a backdoor.
Since April 2016, WhatsApp messages and calls are end-to-end encrypted by default. WhatsApp also offers people a security notifications feature that alerts them when people change keys so that they can verify who they are communicating with.
We published a technical white paper (https://www.whatsapp.com/security/WhatsApp-Security-Whitepaper.pdf) explaining our implementation of end-to-end encryption, where you can read more.
Like everything else in WhatsApp, it's designed to be simple. We built end-to-end encryption with encryption as the default so not a single one of our 1 billion users has to turn on encryption.
This is also true for people who delete and re-install WhatsApp or for those who change their phones. For some people, this can be a frequent occurrence as people manage data charges and phone storage, or share devices with family members.
We want to make sure that people in these situations do not lose access to messages sent to them while they are in the midst of re-installing the app or changing their phones. Because a person's encryption key is changed when WhatsApp is installed on a new phone or re-installed on an old device, we make sure those messages can eventually be read using the new key.
You can choose to be notified using the "Show Security Notifications" setting. When you have turned this setting on, WhatsApp will notify you every time the person you're communicating with changes a key.
Of course, if you are concerned that you're communicating with someone who isn't who they say they are, there are things you can do. If you have "Show Security Notifications" enabled and receive a notification of a key change, send an initial message and wait for the blue checkmarks. You can then verify using a QR code or by comparing a 60-digit number.
We appreciate the interest people have in the security of their messages and calls on WhatsApp. We will continue to set the record straight in the face of baseless accusations about "backdoors" and help people understand how we've built WhatsApp with critical security features at such a large scale
Most importantly, we'll continue investing in technology and building simple features that help protect the privacy and security of messages and calls on WhatsApp.