WhatsApp adds end-to-end encryption for billions of messages

WhatsApp, the popular messaging service, is adding strong encryption to keep user communication safe from hackers and government surveillance. WhatsApp has already added encryption to its Android app, and plans to include it in an iOS update soon.

Ahn Young-joon/AP
WhatsApp announced on Tuesday that it will be adding end-to-end encryption to all messages exchanged between users. Here, a Samsung Galaxy S5 smart phone is displayed in a store in South Korea.

WhatsApp, the popular messaging service purchased by Facebook in February for $600 million, is about to get a major security upgrade. The app will have end-to-end encryption, meaning the contents of messages sent between users will be visible only to those users. The company won’t be able to see the data, and neither will Facebook. That means hackers can’t steal messages, and WhatsApp can’t turn data over to law enforcement – even if ordered to.

In order to provide this encryption, WhatsApp is partnering with Open Whisper Systems, a consortium of security developers and open-source coders, the company announced in a blog post on Tuesday.

The two companies have been working together for about six months – since just after Facebook bought WhatsApp – to bring strong encryption to all of the platforms on which WhatsApp runs. End-to-end encryption is turned on by default in the latest WhatsApp update for Android, and it will soon be available in the iOS client as well. Open Whisper Systems says it is “moving quickly towards a world where all WhatsApp users will get end-to-end encryption by default.”

WhatsApp users shouldn’t notice a change – the encryption will take place behind the scenes, without requiring any additional steps from the user. (In fact, the WhatsApp client for Android has already been silently encrypting users’ messages for the past week.) Moxie Marlinspike, the head of Open Whisper Systems, told Andy Greenberg at Wired that “ordinary users won’t know the difference ... It’s totally frictionless.”

The encryption relies on Open Whisper Systems’ TextSecure software, which uses a cryptographic key to encode the content of messages. The key is accessible only to the users involved in the conversation, and never leaves the phone or tablet being used to chat. Crucially, messages are encrypted all the way from one device to another (rather than being decrypted on WhatsApp’s servers). Right now, only individual chats are protected, but Open Whisper Systems says the new encryption scheme will soon be extended to cover group chats, photos, and media messages, as well.

Jan Koum, the company’s founder, says he has always been opposed to government eavesdropping. Mr. Koum, who grew up in the Soviet Union, told Wired UK in February that he hates government surveillance and that one of WhatsApp’s goals is to protect freedom of speech.

There are other encrypted messaging apps out there, such as Cryptochat, Silent Text, and Apple’s iMessage service, but WhatsApp will be the biggest once the updates are completed. If the partnership between Open Whisper Systems and WhatsApp is successful, all 600 million users of the service should be able to enjoy secure communications soon.

You've read  of  free articles. Subscribe to continue.

Dear Reader,

About a year ago, I happened upon this statement about the Monitor in the Harvard Business Review – under the charming heading of “do things that don’t interest you”:

“Many things that end up” being meaningful, writes social scientist Joseph Grenny, “have come from conference workshops, articles, or online videos that began as a chore and ended with an insight. My work in Kenya, for example, was heavily influenced by a Christian Science Monitor article I had forced myself to read 10 years earlier. Sometimes, we call things ‘boring’ simply because they lie outside the box we are currently in.”

If you were to come up with a punchline to a joke about the Monitor, that would probably be it. We’re seen as being global, fair, insightful, and perhaps a bit too earnest. We’re the bran muffin of journalism.

But you know what? We change lives. And I’m going to argue that we change lives precisely because we force open that too-small box that most human beings think they live in.

The Monitor is a peculiar little publication that’s hard for the world to figure out. We’re run by a church, but we’re not only for church members and we’re not about converting people. We’re known as being fair even as the world becomes as polarized as at any time since the newspaper’s founding in 1908.

We have a mission beyond circulation, we want to bridge divides. We’re about kicking down the door of thought everywhere and saying, “You are bigger and more capable than you realize. And we can prove it.”

If you’re looking for bran muffin journalism, you can subscribe to the Monitor for $15. You’ll get the Monitor Weekly magazine, the Monitor Daily email, and unlimited access to CSMonitor.com.