Zoom Video Communications, Inc. (NASDAQ: ZM) today announced its new end-to-end encryption (E2EE) is now available to users globally, free and paid, for meetings with up to 200 participants. This feature is available immediately as a technical preview, meaning that the company is proactively soliciting feedback from users for the next 30 days. Starting today, E2EE is available on Zoom desktop client version 5.4.0 for Mac and PC, the Zoom Android app, and Zoom Rooms, with the Zoom iOS app pending Apple App Store approval.
Zoom’s E2EE uses the same powerful 256-bit AES-GCM encryption that secures Zoom meetings by default. When users enable E2EE for their meetings, nobody except each participant — not even Zoom’s meeting servers — has access to the encryption keys that are used to encrypt the meeting.
In typical meetings, Zoom’s cloud meeting server generates encryption keys for every meeting and distributes them to meeting participants using Zoom clients as they join. With Zoom’s new E2EE, the meeting’s host generates encryption keys and uses public key cryptography to distribute these keys to the other meeting participants. Zoom’s servers become oblivious relays and never see the encryption keys required to decrypt the meeting contents. Encrypted data relayed through Zoom’s servers is indecipherable by Zoom, since Zoom’s servers do not have the necessary decryption key.