secretconversationsfacebook100670632orig

Facebook brings end-to-end encryption to Messenger with 'secret conversations'

Facebook’s following the encrypted messaging trend set by other apps including Facebook-owned WhatsApp, Viber, and Google’s Allo. On Friday, the social network announced a limited beta version of Messenger for Android and iOS with an end-to-end encryption (E2EE) feature dubbed secret conversations.

Secret conversations will only be available to a limited number of users at first, with a wider roll out planned for later this summer. The feature name “secret conversations” first surfaced in March.

Secret conversations in Messenger for iOS.

Messenger’s secret conversations won’t be like WhatsApp, which offers complete E2EE for all messages when all users in the conversation have a compatible version of the app. Instead, secret conversations will allow Messenger users to encrypt one-on-one conversations on the fly. Group messaging will not be covered.

When encrypted, the messages will only be accessible to the two conversation participants. While the message is in transit from one device to the other it won’t be possible for third parties—including Facebook—to decipher the message.

Facebook is also adding a Snapchat-like self-destruct setting that allows secret conversations to disappear after a predetermined amount of time. Rumors about Facebook’s plans for a Snapchat-like feature for Messenger first surfaced in May.

Each secret conversation will also exist in its own section of the app for each Messenger contact. Secret conversations will not be integrated with the main conversation thread for that person. 

The biggest limitation of secret conversations is that new feature will only work on one device. Facebook told Wired it doesn’t have a system in place to distribute encryption keys (bits of information that encrypt and decrypt messages) across multiple devices. 

Secret conversations will also start with a slimmed down feature set, leaving out support for animated GIFs, video, Facebook’s payments system, and other features.

For the encryption protocol, Facebook plans to use Open Whisper Systems’ Signal, which is also used by WhatsApp and Allo.

The story behind the story: Facebook hasn’t said whether it plans to move towards a fully-encrypted Messenger or only offer the option for people who need it. As more features get added to secret conversations, and if Facebook lifts the one device limit, the E2EE feature could become a standard part of the massive messaging platform.

If going full E2EE is indeed the final plan it wouldn’t be the first time Facebook took a piecemeal approach to encryption. Facebook’s move to make all parts of the social network’s website SSL/TLS-compatible took several years. At first, users had to enable SSL/TSL encryption manually, and many features of the site didn’t work when early versions of the security measure were turned on.

IDG Insider

PREVIOUS ARTICLE

« Screens that fold and roll will arrive as early as next year

NEXT ARTICLE

4 ways to make agile and waterfall work together »
author_image
IDG News Service

The IDG News Service is the world's leading daily source of global IT news, commentary and editorial resources. The News Service distributes content to IDG's more than 300 IT publications in more than 60 countries.

  • Mail

Recommended for You

Trump hits partial pause on Huawei ban, but 5G concerns persist

Phil Muncaster reports on China and beyond

FinancialForce profits from PSA investment

Martin Veitch's inside track on today’s tech trends

Future-proofing the Middle East

Keri Allan looks at the latest trends and technologies

Poll

Do you think your smartphone is making you a workaholic?