Dave: Discord's New End-to-End Encryption for Audio and Video
Discord has launched DAVE, an end-to-end encryption protocol for audio and video calls, ensuring only participants access content, with dynamic keys and open-source design for enhanced user privacy.
Read original article
Discord has introduced a new end-to-end encryption (E2EE) protocol for audio and video calls, named DAVE, aimed at enhancing user privacy for its 200 million monthly users. The rollout will begin with direct messages, group messages, voice channels, and Go Live streams. The DAVE protocol ensures that only call participants can access the content of their conversations, with encryption keys changing dynamically as users join or leave calls. The protocol has been developed in collaboration with cybersecurity firm Trail of Bits, which conducted a thorough review of its design and implementation. DAVE is designed to be open and auditable, with a whitepaper and open-source libraries available for public scrutiny. The protocol utilizes Messaging Layer Security (MLS) for scalable group key exchanges and maintains high-quality audio and video without compromising performance. Users will be able to verify call participants through out-of-band comparisons of verification codes. While audio and video will be encrypted, text messages will continue to follow Discord's existing content moderation policies. The transition to E2EE will be seamless for users, who will not need to manage encryption keys or device settings. Discord aims to make E2EE the default for all voice and video communications in the future.
- Discord launches DAVE, an end-to-end encryption protocol for audio and video calls.
- The protocol ensures only participants can access call content, with dynamic encryption keys.
- Developed with cybersecurity firm Trail of Bits, DAVE is open-source and auditable.
- Messaging Layer Security is used for scalable key exchanges, maintaining call quality.
- Users can verify participants through out-of-band verification codes.
Related
Introducing Docs in Proton Drive
Proton Drive introduces Docs, offering end-to-end encrypted collaborative document editing with privacy as a priority. Users can securely manage documents, free from surveillance, leveraging encryption and Swiss privacy laws.
Google takes first major step: E2EE interoperability across all messaging apps
Google Messages is integrating Messaging Layer Security (MLS) for encrypted group messaging, aligning with Google's push for secure communication and potential interoperability advancements, following MLS standards to enhance messaging security.
Content Moderation on End-to-End Encrypted Systems: A Legal Analysis
Content moderation on E2EE systems like Signal and Google Messages raises legal questions. Technologies like message franking aim to enable moderation while preserving privacy, sparking debates on legal implications and challenges.
Not So Secret: Analysis of KakaoTalk's Chat E2EE Feature
KakaoTalk's Secret Chat feature has significant vulnerabilities, including susceptibility to man-in-the-middle attacks and lack of essential security measures. Users are advised to consider more secure alternatives like Signal.
Private Real Time Communication
The article highlights top private instant messengers prioritizing user privacy, including Signal, SimpleX Chat, and Briar, emphasizing features like end-to-end encryption and the importance of independent audits.
5 commentsIf the client is proprietary and controlled by the vendor, E2EE is meaningless.
Last I checked, Discord is a proprietary application that updates itself on startup with freshly baked proprietary blobs straight from Discord Inc. They can say all they want about how great the encryption itself is, sure I believe them, but as long as alternative clients are forbidden and Discord's proprietary self-changing software exists on either end, it doesn't matter.
Related
Introducing Docs in Proton Drive
Proton Drive introduces Docs, offering end-to-end encrypted collaborative document editing with privacy as a priority. Users can securely manage documents, free from surveillance, leveraging encryption and Swiss privacy laws.
Google takes first major step: E2EE interoperability across all messaging apps
Google Messages is integrating Messaging Layer Security (MLS) for encrypted group messaging, aligning with Google's push for secure communication and potential interoperability advancements, following MLS standards to enhance messaging security.
Content Moderation on End-to-End Encrypted Systems: A Legal Analysis
Content moderation on E2EE systems like Signal and Google Messages raises legal questions. Technologies like message franking aim to enable moderation while preserving privacy, sparking debates on legal implications and challenges.
Not So Secret: Analysis of KakaoTalk's Chat E2EE Feature
KakaoTalk's Secret Chat feature has significant vulnerabilities, including susceptibility to man-in-the-middle attacks and lack of essential security measures. Users are advised to consider more secure alternatives like Signal.
Private Real Time Communication
The article highlights top private instant messengers prioritizing user privacy, including Signal, SimpleX Chat, and Briar, emphasizing features like end-to-end encryption and the importance of independent audits.