3. Outcomes: Customized Crypto, Chinese language Servers, Safety Points

Slightly than utilizing a normal protocol for sending voice and video, Zoom seems to implement their very own transport protocol. The Zoom transport protocol seems to be a bespoke extension of the current RTP standard. 

The Zoom transport protocol provides Zoom’s personal encryption scheme to RTP in an uncommon manner. By default, all members’ audio and video in a Zoom assembly seems to be encrypted and decrypted with a single AES-128 key shared amongst the members. The AES key seems to be generated and distributed to the assembly’s members by Zoom servers. Zoom’s encryption and decryption use AES in ECB mode, which is well-understood to be a foul thought, as a result of this mode of encryption preserves patterns in the enter. Business customary protocols for encryption of streaming media (e.g., the SRTP standard) advocate the use of AES in Segmented Integer Counter Mode or f8-mode, which would not have the similar weak spot as ECB mode. Determine 5 is a traditional illustration of the perils of ECB mode: the define of a penguin continues to be seen in a picture encrypted with ECB mode.¹