WhatsApp and Cloudflare have teamed up to enhance the security of end-to-end encrypted (E2EE) messages through the introduction of a new auditing system. Cloudflare’s newly launched service, Plexi, plays a key role in verifying encryption keys and ensuring the security and authenticity of the encryption used in WhatsApp messaging.
Plexi acts as an auditor for key transparency infrastructure, ensuring that encryption keys used in WhatsApp’s E2EE messages are correctly logged and verifiable. This verification process is crucial for maintaining the privacy of digital communication, especially for vulnerable groups such as journalists, activists, and organizations at risk.
Read More: What new features does WhatsApp’s AR Update Provide to iPhone Users?
Matthew Prince, co-founder and CEO of Cloudflare, emphasized that Cloudflare has been a trusted security provider for at-risk groups, and becoming an external auditor for encrypted messaging apps aligns with their mission to enhance security for vulnerable populations. With Plexi, attackers face greater difficulty compromising the system without being detected.
WhatsApp’s Head of Engineering, Nitin Gupta, praised the partnership, noting that it strengthens Key Transparency within WhatsApp and reassures users of the security of their encrypted sessions.
A key benefit of this collaboration is the automation of public key verification. Previously, users had to manually verify key fingerprints to confirm the authenticity of public keys. Now, thanks to Plexi, this process happens automatically in the background, making E2EE more user-friendly and accessible.
As concerns over privacy in digital communication continue to rise, this partnership positions WhatsApp, with its over 2 billion users, as a leader in secure messaging. By bolstering its encryption infrastructure, WhatsApp improves its defenses against cyberattacks and unauthorized access, enhancing user confidence in the security of their communications.