New Delhi -°C
Today in New Delhi, India

Jan 20, 2020-Monday
-°C

Humidity
-

Wind
-

Select city

Metro cities - Delhi, Mumbai, Chennai, Kolkata

Other cities - Noida, Gurgaon, Bengaluru, Hyderabad, Bhopal , Chandigarh , Dehradun, Indore, Jaipur, Lucknow, Patna, Ranchi

Monday, Jan 20, 2020
Home / Tech / Former Facebook security chief Alex Stamos criticises Instagram for extending DMs to web

Former Facebook security chief Alex Stamos criticises Instagram for extending DMs to web

Stamos in a series of tweets explains how Instagram’s decision to extend DMs to web could hurt the goal to bring end-to-end encrypted compatibility between Facebook, Instagram, and WhatsApp.

tech Updated: Jan 15, 2020 11:45 IST
HT Correspondent
HT Correspondent
Hindustan Times
Instagram extends direct messaging support to web.
Instagram extends direct messaging support to web.(REUTERS)
         

Former Facebook chief security officer Alex Stamos has criticised Instagram for extending direct messages support to the web. Stamos said the move goes against Facebook’s goal of bring end-to-end encrypted compatibility between Facebook, Instagram, and WhatsApp.

“This is fascinating, as it cuts directly against the announced goal of E2E encrypted compatibility between FB/IG/WA. Nobody has ever built a trustworthy web-based E2EE messenger, and I was expecting them to drop web support in FB Messenger. Right hand versus left?,” said Stamos in a tweet.

Stamos further explained that the security researchers haven’t yet figured out a secure way to store cryptographic secrets in JavaScript on which Instagram’s website runs on.

 

“The second major issue is the model by which code on the web is distributed, which is directly from the vendor in a customizable fashion. This means that inserting a backdoor for one specific user is much much easier than in the mobile app paradigm,” he said.

Facebook last year had revealed plans to unify the underlying messaging feature on its three instant messaging apps including Messenger, Instagram, and WhatsApp. The company had said it was working to bring end-to-end encryption, which would make it difficult for anyone other than sender and recipient to access the messages exchanged. Facebook’s plans to unify these platforms, however, had stirred privacy concerns.