STARSET_MirrorResearcher’s Claim that Zoom’s Encryption Keys are Often Issued by Servers in China
注意:我们(STARSET Mirror)认为该报道包含不正确的判断,并对该报道持有不同立场:若要指出Zoom的漏洞所在,应该阐明其在密钥产生、储存、分发过程中的漏洞,而不是根据签发服务器所在国来判断其安全性。如果在上述过程中存在漏洞,那么即使相关服务器不位于中国,也有遭到攻击的可能。
The research was done by the people at the University of Toronto and as per the findings, it turns out that some of the encryption keys were issued by servers that were located in China, despite all the participants residing in North America.
这项研究是由多伦多大学的人所制作;根据研究结果来看,尽管所有的参与者都是居住在北美,但其中一些密钥是位于中国的服务器所发出。
The researchers also discovered that Zoom has protection for audio and video content through in-house encryption. The research reveals that there is a vulnerability that is in Zoom’s waiting room feature, and not just that, the company also happens to have about 700 employees in China that are working across three subsidiaries.
研究人员还发现,Zoom公司通过内部加密达到保护音频和视频内容的目的;研究显示Zoom公司的等候室功能存在一个漏洞;不仅如此,该公司在中国有大约700名员工,分别位于在三家子公司中。
As per the conclusion of the report, at the time of writing, Zoom is not secure or suited for secret meetings, at all.ww
根据报告的结论,在撰写本文时Zoom根本不安全,也不适合秘密会议。
Read more at WCCFTech
翻译:SCGS翻译组
