zoom运行环境
Prior to joining Five9, I spent 6 years at Cisco as SVP & GM of the collaboration business (including Webex). Before that I was the President of one of the largest cybersecurity companies and spent 20 years building security software to protect folks from the bad guys.
在加入Five9之前,我在思科工作了6年,担任协作业务(包括Webex)的高级副总裁兼总经理。 在此之前,我曾是最大的网络安全公司之一的总裁,并花了20年的时间来开发安全软件,以保护人们免受恶意攻击。
While at Cisco I brought my passion for security to the table and we made numerous security improvements to Webex while making it easier to use. Since I’ve left, the team continues to make Webex easier and more secure.
在思科工作期间,我将对安全性的热情带到了桌面,我们在使Webex易于使用的同时对Webex进行了大量安全性改进。 自从我离开之后,该团队继续使Webex更轻松,更安全。
I never anticipated the usage of these business technologies coming into the home, but that’s what they’ve done, most notably with Zoom. Over the last several weeks, my kids have switched to distance learning. Like many others, our school tried a popular meeting product first and found it wasn’t up to the task — and within days they’d switched to Zoom. With my kids in daily Zoom meetings it was with annoyance and personal concern that I read the headlines of sick individuals “Zoom bombing” unsuspecting users, schools and so on.
我从没预料到这些业务技术会进入家庭,但这就是它们所做的,尤其是使用Zoom。 在过去的几周中,我的孩子们转向了远程学习。 与许多其他会议一样,我们学校首先尝试了一种流行的会议产品,但发现并不能满足任务要求,几天之内便切换到Zoom。 在我的孩子每天参加Zoom会议的过程中,我非常烦恼和个人关注,阅读了生病的个人“ Zoom炸弹”的头条,毫无怀疑的是用户,学校等。
My personal concerns mirrored that of many others. At a time when the industry was serving great global need, could we count on the security bonafides of Zoom to be the most depended upon platform? Should I allow Five9’s business to continue relying on Zoom?
我个人的担忧反映了许多其他人的担忧。 在这个行业满足全球巨大需求的时候,我们能否指望Zoom作为最依赖平台的安全保障? 我是否应该允许Five9的业务继续依赖Zoom?
Zoom provided me unfettered access to their engineers and security experts to answer all my questions. Through these conversations, I was able to get insight into some of the most important security capabilities which have been challenges for other meetings products.
Zoom为我提供了不受限制地访问其工程师和安全专家的机会,可以回答我的所有问题。 通过这些对话,我能够洞悉某些最重要的安全功能,这些功能对于其他会议产品而言都是挑战。
After spending time with them, it is my opinion that Zoom has set the bar for the entire industry creating a product that is not only at least as secure as the competition, but also implements those security capabilities in a way that doesn’t sacrifice usability and ease of use.
在与他们共度时光之后,我认为Zoom为整个行业树立了标杆,不仅创造了至少与竞争对手一样安全的产品,而且以不牺牲可用性的方式实现了这些安全功能。和易用性。
I’ve summarized the top 7 facts about Zoom security that I found to back up this claim:
我总结了有关Zoom安全性的7个主要事实,以支持这一主张:
- Zoom has a highly secure Personal Meeting ID (aka PMI) solution. The Personal Meeting ID has become an incredibly popular way to meet (35% of all meetings are taking place on PMI’s), especially in the WFH era where ad-hoc meetings are common. Zoom has an industry-leading capability here with full password capabilities on their PMI’s and now requires them by default. Zoom具有高度安全的个人会议ID(aka PMI)解决方案。 个人会议ID已成为一种非常受欢迎的会议方式(所有会议的35%都是在PMI上进行的),特别是在WFH时代,临时会议很普遍。 Zoom具有行业领先的功能,在其PMI上具有完整的密码功能,现在默认情况下需要它们。
- Zoom has an elegant approach to locking meetings from unwanted guests (so called “ZoomBombing”) called “waiting rooms”. This allows for a meeting to be closed but let’s new users enter a waiting room where they can be admitted by the host or by another user. Other meetings products have the ability to LOCK the meeting, but the implementations are less elegant and generally require the host to admit each new entrant. Zoom拥有一种优雅的方法来锁定不需要的客人(称为“ ZoomBombing”)的会议,称为“候诊室”。 这样可以关闭会议,但是让新用户进入等候室可以由主持人或另一位用户允许他们进入。 其他会议产品具有锁定会议的功能,但实现方式不太优雅,通常需要主持人允许每个新参与者加入。
- Going further on Zoom bombing, Zoom recently made it even easier to discover the controls to manage this with a new easily accessible “Security” button in the meetings control bar (also on mobile). Very impressive how quickly this was done. 在进一步进行Zoom轰炸时,Zoom最近通过会议控制栏中的易于访问的“安全”按钮(也位于移动设备上)使查找控件进行管理变得更加容易。 令人印象深刻的是完成的速度。
- Encryption. There are two primary questions about encryption. First, what encryption is used. Zoom uses AES-256 ECB moving to GCM. This is industry best in class for encrypting conversations on your computer or phone, and securely transmitting those to Zoom systems. Second, the question of E2E encryption. The promise of E2E Encryption is that the contents of your conversation are encrypted on your computer using keys that are not available to anyone until they land on the far end computer. E2E encryption place severe limitations on functionality like joining from conference rooms, sharing screens, joining before the host and more. Due to these limitations, there has been no industry standard defined. E2E under current limitations isn’t viable for any video conference provider today. 加密。 关于加密有两个主要问题。 首先,使用什么加密。 Zoom使用AES-256 ECB移至GCM。 这是业界一流的,可对计算机或电话上的对话进行加密,并将对话安全地传输到Zoom系统。 第二,端到端加密问题。 E2E加密的承诺是,您的对话内容将在计算机上使用任何人使用的密钥进行加密,除非他们登陆到远端计算机上。 E2E加密对功能进行了严格的限制,例如从会议室加入,共享屏幕,在主持人之前加入等等。 由于这些限制,因此尚未定义行业标准。 当前限制下的E2E对于今天的任何视频会议提供商而言都不可行。
- Zoom has an innovative way to prevent copying of shared content called virtual watermarks. They’ve set a new bar here for protecting your content. You won’t find this in other products. 缩放具有防止复制共享内容的创新方法,称为虚拟水印。 他们在这里设置了新的标准来保护您的内容。 您不会在其他产品中找到它。
- Zoom has support for Virtual Backgrounds. Folks have gotten very creative with these which have popped up on social media. The virtual background also serves as an important security feature for large enterprises to prevent sharing of whiteboards or other confidential information which may be visible in the background and inadvertently transmitted in the video. Zoom支持虚拟背景。 人们在社交媒体上已经变得非常有创意。 对于大企业而言,虚拟背景还充当着重要的安全功能,以防止共享白板或其他机密信息,这些信息可能在后台可见,而在视频中无意中传输。
- Zoom has industry-leading capability for admins to control sharing options of participants, for example an Admin can prevent desktop sharing, and only allow app sharing. This is a critical security feature to prevent users from inadvertently sharing documents, messages or other pop-ups that may contain confidential information. Zoom具有行业领先的功能,管理员可以控制参与者的共享选项,例如,管理员可以阻止桌面共享,而仅允许应用共享。 这是一项重要的安全功能,可以防止用户无意间共享可能包含机密信息的文档,消息或其他弹出窗口。
This is not an exhaustive list, I’ve left out other security advantages Zoom has such as client update capabilities, local data residency support and fine-grained controls of meeting recordings which are critical to highly regulated industries like government, education, healthcare and financial services.
这不是详尽无遗的清单,我没有提到Zoom的其他安全优势,例如客户端更新功能,本地数据驻留支持以及对会议记录的细粒度控制,这对于政府,教育,医疗保健和金融等高度管制的行业至关重要服务。
With the exception of number 3, all of these security capabilities in Zoom existed before the recent “Zoom bombing” incidents. In fact, they’ve enabled Zoom to win the business of many of the largest enterprises in the world.
除3号外,Zoom中的所有这些安全功能在最近的“ Zoom爆炸”事件发生之前就已存在。 实际上,他们使Zoom赢得了世界上许多大型企业的业务。
At a time when unprecedented numbers of people are counting on video conferencing technologies more than ever before, it is frustrating to see some actors fanning the flames of fear, uncertainty and doubt. I feel a moral obligation to share the facts of the situation as I know them. As a public company CEO and as a cybersecurity expert, my personal opinion is Zoom is a safe bet for everyone.
在前所未有的人数比以往任何时候都更多地依靠视频会议技术的时候,令人沮丧的是,看到一些演员煽起恐惧,不确定性和怀疑的火焰。 我感到有道德义务分享我所知的情况。 作为上市公司的首席执行官和网络安全专家,我个人认为Zoom是每个人的安全选择。
Disclaimers: As stated above, Five9 is a customer of Zoom. Five9 also has partnerships with Zoom and other UC providers — integrating Five9 Contact Center with their systems. Personally, I make angel investments in early stage tech companies. One of my investments is in neat.no a hardware company making room systems that work with Zoom. Zoom is also an investor in neat.no.
免责声明:如上所述,Five9是Zoom的客户。 Five9还与Zoom和其他UC提供商建立了合作伙伴关系-将Five9 Contact Center与他们的系统集成在一起。 就个人而言,我在早期的高科技公司进行天使投资。 我的投资之一是在neat.no上,没有一家硬件公司生产与Zoom配合使用的房间系统。 Zoom也是neat.no的投资者。
翻译自: https://medium.com/@rowantrollope/beyond-the-noise-7-reasons-its-safe-to-run-zoom-9a2e639b13ec
zoom运行环境