Showing posts from: Facebook

Is Facebook Adding End-to-End Encryption to Messenger?

facebook messenger encryption

Facebook Might Add End-to-End Encryption to Messenger

Some time ago back in April, Facebook-owned WhatsApp added end-to-end encryption to its platform in order to increase security, secure data and weaken hacker efforts to decrypt messages and steal private data since end-to-end encrypted messages can only be read by the intended recipients. In recent reports, Facebook seems to be considering doing the same for its messenger.

It is reported that Facebook might be rolling out this feature in the coming few months and it will be a mode that users need to opt into in order to enable it, unlike WhatsApp’s encryption which was turned on by default for all WhatsApp users.

What does that mean to Facebook?

Facebook heavily relies on artificial intelligence and data collection to better respond to user requests. Facebook Messenger Bots, for example, need to access information on the company’s server in order to collect the information they need. Once the encryption is enabled, the company will not be able to access information between senders and receivers, since any encrypted information will only be seen by them. Learn more about bots here.

So it really comes down to this: will users want more privacy or more artificial intelligence? I, for one, would definitely choose more privacy any time and any day of the year!

Why Now?

It comes as no surprise that Facebook would consider taking such a step after the battle that Apple has fought with the FBI over its use of encryption.

Moreover, it is worth mentioning that Facebook is not the only one thinking of considering this security upgrade, Google’s upcoming “smart messenger”, Allo, will also be offering an additional opt-in encryption feature for its users.

Which messaging application do you use most and why? We are looking forward to hearing from you in the comment section below.

How to Make Your Passwords Safer

passwords safer

Tips for making your passwords safer

Passwords are the most common way for authenticating users worldwide, however, they have been in slow decline for the past decade. This is why businesses need to find alternatives to this outdated security measure or find ways to make passwords safer in order to protect their employees, data and assets.

Since passwords are hard to remember and are susceptible to theft or extraction by hackers, what other methods can you use for additional security? This is exactly what we will discuss in this important post.

Making passwords safer:

Below are some alternatives to passwords along with their pros and cons:

  • Security tokens

Security tokens, both soft and hard, provide a reasonable level of security as they require a specific item for login. Moreover, tokens generate one-time passwords based on a ‘seed record’ that is synchronized with a central server.

However, token-based systems are highly expensive to deploy. Also, they require users to have their tokens with them at all times and safeguard them from theft and loss.

  • Biometrics

Biometrics are identifiers such as face recognition and fingerprints. They currently have popular applications such as Face ID and Apple’s Touch ID. What makes biometrics secure is that the technology is based on what the user is. This means they cannot be lost or hacked. Moreover, they provide a better user experience as they are easy and quick to authenticate.

On the downside, biometric systems still lack accuracy and may be very expensive to use. Furthermore, they are prone to hacking as biometric markers can be forged using high-resolution photos.

  • Phone-based authenticators

If you are looking for leading security solutions in the tech world, phone authenticators are the next big thing. Below are 3 main methods that mobiles use for authentication:

1) Push notification apps: Offer a smooth user experience and work by sending a user’s access request through a server and offering an immediate response. The response is either a security challenge or a message that authentication has taken place. Learn more about push notification apps here.

2) Software tokens: These use your smartphones to calculate a one-time code using your smartphone’s clock as well as the algorithm in your app’s software. However, the fact that soft tokens one-time passwords are located on a network-connected device makes them vulnerable to attacks as they are open to remote threats. To better understand software tokens, click here.

3) Text messaging: Initially, SMS authentication was used in addition to passwords. However, the value of the password diminished and applications started using SMS as password alternatives. The biggest advantage of SMS authentication is that they don’t require users to install any app on their mobiles. On the other hand, they are weak on security as they can be easily compromised. Click here to know more about the advantages of SMS authentication.

Armed with the above knowledge, which security method do you think you can use to make your business passwords safer and why? We look forward to reading your valuable insights in the comment section below.