{"id":20309,"date":"2020-04-11T06:48:03","date_gmt":"2020-04-11T06:48:03","guid":{"rendered":"https:\/\/www.lifeandnews.com\/articles\/?p=20309"},"modified":"2020-04-16T10:48:38","modified_gmt":"2020-04-16T10:48:38","slug":"videoconferencing-keeps-people-connected-while-the-coronavirus-keeps-them-inside-but-privacy-and-security-are-far-from-perfect","status":"publish","type":"post","link":"https:\/\/www.lifeandnews.com\/articles\/videoconferencing-keeps-people-connected-while-the-coronavirus-keeps-them-inside-but-privacy-and-security-are-far-from-perfect\/","title":{"rendered":"Videoconferencing keeps people connected while the coronavirus keeps them inside \u2013 but privacy and security are far from perfect"},"content":{"rendered":"

Elizabeth Stoycheff<\/a>, Wayne State University<\/a><\/em><\/p>\n

If, before COVID-19, you were concerned about all the data that technology companies had about you<\/a>, just wait. As stay-at-home orders push more professional and social activities online, it\u2019s becoming harder to remain in control.<\/p>\n

Look no further than Zoom, which suffered dual security and privacy crises<\/a> in the past few weeks. Lawsuits alleging data sharing violations and hackers have descended on the software, which has led Google and school districts to ban Zoom<\/a> for professional use.<\/p>\n

I\u2019m a researcher who investigates how these concerns affect the use of online platforms<\/a>. The first thing to understand is that privacy and security are two different things, and they have different consequences for using videoconferencing platforms.<\/p>\n

Privacy versus security<\/h2>\n

Privacy refers to individuals\u2019 universal rights<\/a> to control their data. Security is how that data is protected. One or both can be compromised when using popular videoconferencing tools, leaving personal information vulnerable.<\/p>\n

For example, say someone signs up for a new videoconferencing platform using full name, email address and phone number. Ideally, the platform company would maintain both privacy and security, meaning the company wouldn\u2019t share that person\u2019s information outside the company, and would keep their system protected from hackers and viruses. The most private platforms, like Signal<\/a> and FaceTime<\/a>, use end-to-end encryption to ensure that even the companies themselves do not have access to the contents of anyone\u2019s communication. When such systems are kept secure, they are the best communication tools to use.<\/p>\n

Alternatively, a company could compromise privacy but maintain security, meaning it would collect information about video calls and sell that data to a third party for marketing purposes. Many companies will include such conditions in their terms of service, which users rarely read<\/a>. However, companies have incentive to maintain security; they don\u2019t want to be overrun with criminals or pranksters, which could damage their reputations.<\/p>\n

\"\"
Videoconferencing software mapped in terms of security and privacy protections.<\/span>
\nElizabeth Stoycheff<\/span>, CC BY-ND<\/a><\/span><\/figcaption><\/figure>\n

Worst case is when a company surrenders both privacy and security, meaning they share personal information with third parties, and they fail to prevent data breaches<\/a>. Offerings from these companies are the riskiest of all digital tools, and unfortunately, they\u2019re all too common.<\/p>\n

Here\u2019s how some of the most popular video conferencing services stack up.<\/p>\n

Videoconferencing options<\/h2>\n

Zoom\u2019s most updated privacy policy<\/a> states that the company \u201cdo[es] not allow third parties to use any personal data obtained from users for their own purposes, unless you consent.\u201d However, Zoom is currently facing a lawsuit alleging that it violated this agreement and shared user data with Facebook<\/a>. The company claims that this was a security, not a privacy, breach and that it was not compensated for data sharing.<\/p>\n

Zoom has also come under fire for security flaws that have allowed \u201cZoom-bombers<\/a>\u201d to intrude on personal calls, often using profane or obnoxious content. The company admitted that it has fallen short on protecting users\u2019 privacy and security<\/a> and is working to fix the problems.<\/p>\n

Microsoft Teams\u2019 privacy policy<\/a> leaves no questions. It explicitly states that it \u201ccollects data from you, through our interactions with you and through our products.\u201d It is upfront about using this information to market to users, personalize their experiences and even participate in legal investigations. In other words, make no presumptions of privacy here \u2013 all personal data on the platform is fair game.<\/p>\n

To differentiate its security from Zoom, Microsoft\u2019s Teams has implemented dual-factor authentication<\/a>, meaning passwords are not enough. Users need to also enter email or text codes to log in. The Microsoft family of software \u2013 though not Teams specifically \u2013 confronted a number of security problems this year, including a breach of its customer service center<\/a> that exposed 14 years of information. The jury is still out on whether it\u2019s a more secure alternative to Zoom.<\/p>\n

Unlike Zoom and Teams, Webex offers hosts the option of end-to-end encryption<\/a>, meaning only the sender of a message and its recipient have access to the data within. This is a strong privacy feature, but it\u2019s elective and tends to limit the usefulness of the tool.<\/p>\n

Webex is not immune to security breaches, but the difference between this company and their competitors is their transparency and quick patches. The platform actively maintains a public list of vulnerabilities<\/a>, which documents how the company has resolved them.<\/p>\n

\"\"
Zoom\u2019s virtual waiting room, which prevents participants from joining a meeting without the host\u2019s permission, is now on by default.<\/span>
\nPaul Swansen\/Flickr<\/a>, CC BY-ND<\/a><\/span><\/figcaption><\/figure>\n

Skype has a privacy problem. It shares user data<\/a> with third parties, across the entire Microsoft family, and even with law enforcement when asked. In a benign effort to improve customer service, it allowed employees to access recordings of Skype conversations<\/a> from their personal computers over a period of several years. Such tasks have since been transferred to a secure facility, but it doesn\u2019t change the fact that if you\u2019ve used Skype lately, your privacy has been compromised.<\/p>\n

Like Teams, Skype uses dual-factor authentication but it was also likely compromised in the massive Microsoft customer service breach<\/a> earlier this year.<\/p>\n

Long before Facebook acquired WhatsApp, the video chat service provided end-to-end encryption<\/a> on calls and messages. The privacy of chats here are, and always have been, protected.<\/p>\n

However, WhatsApp suffered a very public security breach when Jeff Bezos\u2019 personal messages were compromised by spyware and leaked. That was one of 12 vulnerabilities<\/a> the platform faced last year.<\/p>\n

Apple\u2019s FaceTime also boasts end-to-end protections<\/a>, and the company has upheld its commitment to privacy by refusing requests from the FBI<\/a> to access user devices. It\u2019s positioning itself as a steward of user privacy.<\/p>\n

Like other services, FaceTime has been susceptible to occasional security hacks. In early 2019, users reported a security glitch in its group calls<\/a> where recipients could hear and see callers before answering. The feature was disabled and patched, and the service has been without a major incident since.<\/p>\n

Settings and choices<\/h2>\n

Across all these platforms, people should use complex passwords, turn on enhanced security features, like the use of waiting rooms<\/a> and channel moderation<\/a>, and make sure conferences are restricted to intended guests. It\u2019s also important to consider what can be seen on camera, like a loan statement pinned to a bulletin board or an envelope with a home address visible. Try videoconferencing in front of a neutral wall or using blurred<\/a> or customized<\/a> backdrops to keep the home environment off camera.<\/p>\n

There\u2019s still room in the market for more reliably secure, private videoconferencing systems. But in the meantime, not all communication requires the same levels of privacy and security. People might not care much if marketers or even pranksters crash their G-rated happy hours. But confidential client meetings and remote health care consultations are another matter. The companies\u2019 offerings and track records, outlined here, should help people choose the videoconferencing tool that best balances usefulness with privacy and security.<\/p>\n

[Get facts about coronavirus and the latest research.<\/em> Sign up for The Conversation\u2019s newsletter.<\/a>]\"The<\/p>\n

Elizabeth Stoycheff<\/a>, Associate Professor of Communication, Wayne State University<\/a><\/em><\/p>\n

This article is republished from The Conversation<\/a> under a Creative Commons license. Read the original article<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"

Elizabeth Stoycheff, Wayne State University If, before COVID-19, you were concerned about all the data that technology companies had about you, just wait. As stay-at-home orders push more professional and social activities online, it\u2019s becoming harder to remain in control. Look no further than Zoom, which suffered dual security and privacy crises in the past […]<\/p>\n","protected":false},"author":44,"featured_media":20310,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[8],"tags":[7559,7689,612,7675,7928,549,7598,7775,881,7925,4151,2288,525,7633,240,7924,2290,7927,7926,7929],"_links":{"self":[{"href":"https:\/\/www.lifeandnews.com\/articles\/wp-json\/wp\/v2\/posts\/20309"}],"collection":[{"href":"https:\/\/www.lifeandnews.com\/articles\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.lifeandnews.com\/articles\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.lifeandnews.com\/articles\/wp-json\/wp\/v2\/users\/44"}],"replies":[{"embeddable":true,"href":"https:\/\/www.lifeandnews.com\/articles\/wp-json\/wp\/v2\/comments?post=20309"}],"version-history":[{"count":2,"href":"https:\/\/www.lifeandnews.com\/articles\/wp-json\/wp\/v2\/posts\/20309\/revisions"}],"predecessor-version":[{"id":20358,"href":"https:\/\/www.lifeandnews.com\/articles\/wp-json\/wp\/v2\/posts\/20309\/revisions\/20358"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.lifeandnews.com\/articles\/wp-json\/wp\/v2\/media\/20310"}],"wp:attachment":[{"href":"https:\/\/www.lifeandnews.com\/articles\/wp-json\/wp\/v2\/media?parent=20309"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.lifeandnews.com\/articles\/wp-json\/wp\/v2\/categories?post=20309"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.lifeandnews.com\/articles\/wp-json\/wp\/v2\/tags?post=20309"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}