Home / Companies / Cloudflare / Blog / Post Details
Content Deep Dive

Cloudflare helps verify the security of end-to-end encrypted messages by auditing key transparency for WhatsApp

Blog post from Cloudflare

Post Details
Company
Date Published
Author
Thibault Meunier, Mari Galicer
Word Count
1,803
Company Posts That Month
39
Language
English
Hacker News Points
-
Post removed?
No
Summary

End-to-end encrypted messaging apps such as WhatsApp, Signal, and iMessage rely on public-private key exchange for secure conversations. However, an implicit trust in the correct distribution of public keys by the app infrastructure is often overlooked. To protect the integrity of end-to-end encrypted conversations, several methods have been deployed, including in-person verification of QR code fingerprints. WhatsApp has paved the way with their Key Transparency announcement, and Cloudflare now verifies WhatsApp's Key Transparency audit proofs. The Auditable Key Directory (AKD) is a tree-shaped data structure that forms the architectural foundation of Key Transparency. Cloudflare's role in Key Transparency involves checking that the AKD tree has been constructed correctly and consistently over time.

Trends Found in this Post

No tracked trend matches for this post yet.

Use This Data

Use this post, company, and trend context to find content marketing opportunities, perform competitive analysis, or address product feature gaps via the Plushcap MCP server or the Plushcap API.