this post was submitted on 03 Jun 2024
138 points (100.0% liked)

TechTakes

1486 readers
201 users here now

Big brain tech dude got yet another clueless take over at HackerNews etc? Here's the place to vent. Orange site, VC foolishness, all welcome.

This is not debate club. Unless it’s amusing debate.

For actually-good tech, you want our NotAwfulTech community

founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] 200fifty@awful.systems 53 points 6 months ago* (last edited 6 months ago) (24 children)

Q: When you think about the big vision — which still my mind is blown that this is your big vision, — of “I’m going to send a digital twin into a meeting, and it’s going to make decisions on my behalf that everyone trusts, that everyone agrees on, and everyone acts upon,” the privacy risk there is even higher. The security surface there becomes even more ripe for attack. If you can hack into my Zoom and get my digital twin to go do stuff on my behalf, woah, that’s a big problem. How do you think about managing that over time as you build toward that vision?

A: That’s a good question. So, I think again, back to privacy and security, I think of two things. First of all, it’s how to make sure somebody else will not hack into your meeting. This is Eric; it’s not somebody else. Another thing: during the call, make sure your conversation is very secure. Literally just last week, we announced the industry’s first post-quantum encryption. That’s the first one, and at the same time, look at deepfake technology — we’re also working on that as well to make sure that deepfakes will not create problems down the road. It is not like today’s two-factor authentication. It’s more than that, right? And because deepfake technology is real, now with AI, this is something we’re also working on — how to improve that experience as well.

Spoken like a true person who has not given one iota of thought to this issue and doesn't know what most of the words he's saying mean

[–] Atelopus-zeteki@kbin.run 21 points 6 months ago* (last edited 6 months ago) (8 children)

"the industry’s first post-quantum encryption." What the hell is post-quantum encryption?

According to NIST this is something to be developed, not something Zoom has 'all of a sudden created' in the time between that question being asked, and the time the question was answered. SMH.

If you are curious, you can read up on it: https://csrc.nist.gov/projects/post-quantum-cryptography

[–] SnipingNinja 10 points 6 months ago (1 children)

I thought we already had post quantum encryption, or at least that's what some articles I read claimed

[–] Atelopus-zeteki@kbin.run 8 points 6 months ago (1 children)

Please elaborate. I'm def not up on the cutting edge of encryption. And I'd like to know more.

[–] dgerard@awful.systems 13 points 6 months ago (1 children)

it means cryptography with algorithms that will be resistant to quantum computers that are any good

[–] Atelopus-zeteki@kbin.run 6 points 6 months ago* (last edited 6 months ago) (2 children)

Thank you, I understand the goal in a broader sense, and definition. Are you aware of any methods, for instance, that Zoom, or anyone else, could actually be rolling out at this time?

[–] SnipingNinja 13 points 6 months ago (1 children)

This was back in 2022: https://cloud.google.com/blog/products/identity-security/why-google-now-uses-post-quantum-cryptography-for-internal-comms

But from what I understand Google claims to have rolled out an algorithm to Chrome users, I can't find the original article which lead to my first response to you, but this seems not too far from it

[–] Atelopus-zeteki@kbin.run 5 points 6 months ago

I saw that article when I searched DDG. Thanks, I'll give it a look. :-)

load more comments (6 replies)
load more comments (21 replies)