Skip to main content
  1. Home
  2. Mobile

WhatsApp’s online backups are getting end-to-end encryption

Michael Allison
By

Facebook is tightening WhatsApp’s security by extending end-to-end encryption (E2EE) to cloud backups via an update to the app on iOS and Android. This was already allowed this on local WhatsApp backups, but the company will extend these security tools to online backups made to iCloud and Google Drive.

“Starting today, we are making available an extra, optional layer of security to protect backups stored on Google Drive or iCloud with end-to-end encryption. No other global messaging service at this scale provides this level of security for their users’ messages, media, voice messages, video calls, and chat backup,” the WhatsApp team shared this week.

Recommended Videos

It’s an optional feature, and users will be able to enable it in WhatsApp’s settings when it’s available. While WhatsApp’s link to Facebook means that it carries the company’s stigma around privacy and security, the service had always been surprisingly secure. Person-to-person chats are secured by the same end-to-end encryption protocol as Signal, while the only loophole was with online chats. With this rollout, the company would be closing that and increasing its privacy profile.

WhatsApp multi-device support image laptop, display, tablet
Facebook Engineering Blog

“To enable E2EE backups, we developed an entirely new system for encryption key storage that works with both iOS and Android. With E2EE backups enabled, backups will be encrypted with a unique, randomly generated encryption key. People can choose to secure the key manually or with a user password,” the WhatsApp team explained in September. “When someone opts for a password, the key is stored in a Backup Key Vault that is built based on a component called a hardware security module (HSM) — specialized, secure hardware that can be used to securely store encryption keys. When the account owner needs access to their backup, they can access it with their encryption key, or they can use their personal password to retrieve their encryption key from the HSM-based backup key vault and decrypt their backup.”

Related

Facebook’s other messaging services, Messenger and Instagram Direct, do not yet offer end-to-end encryption by default. Instead, the company offers a discrete private mode on Messenger for people who want their calls and chats secured. With Facebook planning to merge all three services eventually, it seems more likely than not that the company plans for end-to-end encryption to be the default at some point in the future.

Editors' Recommendations

Topics
Michael Allison
Michael Allison
Mobile News Writer
A UK-based tech journalist for Digital Trends, helping keep track and make sense of the fast-paced world of tech with a…
Google Messages vs. Samsung Messages: Which app should you use?
Google messages versus samsung messages app icons side by side on Galaxy Z Fold 5.

Amid the rise of third-party messaging apps, texting remains a popular means of messaging in the U.S. If you own an Android phone, you've likely used or heard of Google Messages, which is positioned as the default text messaging app for Android. It is the culmination of Google's long history with multiple messaging platforms. Google has pursued smartphone companies to use its Dialer and Messages apps as their default since at least 2017 and now mandates them to use Google Messages as the default messaging app on all devices.

Meanwhile, if you have been a Samsung user in the past, you have likely also known and experienced the Samsung Messages app, which comes preinstalled on all Samsung phones and cannot be uninstalled. This is despite losing its spot as the default messaging app on Samsung Galaxy smartphones.

Read more
Is Temu legit? Everything you need to know about the shopping app
An image of the Temu app listing on the iOS app store on an iPhone 12.

Have you been looking for an Amazon shopping alternative? Outside of getting in your car and heading to your local brick-and-mortar establishment (scary, we know), one smartphone and tablet-friendly shopping tool you could take for a spin is Temu. 

Launched in September 2022, Temu prides itself on its cost-friendly approach to buying stuff online. But is it a worthy stand-in for Amazon, or should you stick to the Almighty A for your household must-haves? Let’s find out!
What is Temu?

Read more
The 1Password Android app just got a huge upgrade
The 1Password Android app, side-by-side, showing the light and dark mode.

The 1Password password manager app for Android has just gotten a huge new update, which unlocks the use of passkeys through its app. Held by many as the future of secure authentication, passkeys are the next evolution of the password, and from today, you'll be able to use 1Password to create, manage, and unlock your accounts that use passkey authentication.

1Password is one of the world's most popular password managers, with over 700,000 passwords saved. But it clearly sees that the future is elsewhere, as it has been leading the charge on taking passkeys into the mainstream.

Read more