Is WhatsApp’s Encryption Problematic for Users’ Security?

WhatsApp rolled out end-to-end encryption on its platform in April of last year. This means that WhatsApp users now have all of their photos, media, and messages encrypted by default. In this new system, only the intended recipient of a message can read the message — no one in between, not even WhatsApp or the government, can ostensibly access these conversations.

This January, The Guardian broke the news that Facebook-owned WhatsApp contained a “backdoor” to its encrypted messaging platform. This alleged “backdoor,” the article claims, can allow governments and hackers to snoop on users’ private conversations. This “backdoor” is possible thanks to a vulnerability in the app: the vulnerability was designed to make the app more user friendly. That’s why it’s important to run regular virus scans on your device, to ensure that all of your apps and data are protected — despite any vulnerabilities. Click here to run a full virus scan now:

Almost immediately after The Guardian’s article, cryptologists took to Twitter to criticize the allegation. Brian Acton, WhatsApp’s co-founder, and Moxie Marlinspike, the founder of Open Whisper Systems — the team that helped design WhatsApp’s encryption — released statements calling the claim “false” and “disappointing.” Further, 40 security experts signed an open letter requesting that The Guardian apologize and retract the story since the use of the word “backdoor” implies an intentional design decision on WhatsApp’s end.

In his statement, Marlinspike explained that the feature The Guardian had interpreted as a “backdoor” came about as a necessary trade-off between security and usability. In other end-to-end encrypted messaging systems, users are often blocked if they try to message someone who changed his or her security key — unbeknownst to the sender. In contrast, WhatsApp made the choice to give the sender a warning that the recipient of the message has changed his or her security key.

WhatsApp is Still Safe to Use

Putting aside this drama about the backdoor possibility, security experts have conceded that the flaw in the encrypted messaging system is problematic. The end-to-end system has also briefly impeded WhatsApp’s ability to detect and fight spam. However, as reported by Business Insider, WhatsApp is still the best choice for users who want a secure messaging platform that is easy to use.

An Alternative to WhatsApp

For users who still feel concerned however, consider downloading the Signal app. This messaging app was developed by Open Whisper Systems, and is largely considered to be the most secure messaging app on the market. You can download this app for free from the Play store or directly from Open Whisper Systems’ website.