Hi there,
I am trying to dial in on what privacy protections there actually are in Brave Talk.
From 2021 article:
“Brave Talk users can enable multiple layers of encryption on calls, so an eavesdropper cannot listen in on users’ calls, and our servers don’t save metadata, so calls, images, and activities are never recorded or shared without user consent,”…
“Brave Talk does not (yet) have end-to-end encryption rolled out…”
On encryption it says users can enable different layers in the settings. It describes the current strongest level of encryption available in both free and premium versions of Brave Talk as “Video Bridge Encryption”.
“This setting ensures that the video and audio streams are encrypted using keys generated by the participants, which prevents eavesdropping on the Video Bridge Server,” said co-founder and CEO Brendan Eich. “Video Bridge Encryption can be enabled under ‘Security Options’.”
“Because we find the phrase ‘end to end encryption’ to be confusing and overloaded, Brave Talk refers to the setting as “Video Bridge Encryption,” he also told us, adding: “End to end encrypted calls are just one dimension of privacy and security when participating in video calls. Even when using encryption, most of the ‘Big Tech’ video tools actively collect and store data about your call: Who the participants were, when the call took place and for how long, and a host of other information.
“The anonymous credential system employed by Brave Talk ensures that we don’t know who users are and who they are talking to, and we can’t link them across sessions. Brave Talk is a privacy-by-default tool that does not track users.”
Pushed for more clarity on the difference between Video Bridge Encryption (VBE) and E2EE, he also told TechCrunch: “The reason that we refer to it as ‘Video Bridge Encryption’ and not ‘End to End Encryption’ is that, while VBE does ensure that audio and video remain encrypted from Brave, 8×8, and any other passive eavesdroppers, we are still working with 8×8 on a way to make this more robust against active attackers by automatically authenticating meeting participants.
“When that work is complete, we will feel comfortable introducing it as full end to end encryption, and it will provide significant advantages over platforms like Zoom, which require participants to read a security code out loud to confirm end to end encryption is working.”
Source:
Question 1: Where is Brave at with the e2ee?
Question 2: Is Brave Talk still hosted on an 8 x 8 server or has it migrated elsewhere?
Since Brave Talk uses Jitsi software, this would be a place to look for information on the encryption:
Does Jitsi support end-to-end encryption?
The short answer is: Yes, we do!
You can turn on end-to-end encryption (e2ee) as long as you are using Jitsi Meet on a browser with support for insertable streams. Currently this means any browser based on Chromium 83 and above, including Microsoft Edge, Google Chrome, Brave and Opera. You may also use our Electron client, which supports it out of the box.
All you need to do is select the “End-to-end Encryption” option in the overflow menu and then make sure that all participants fill in the same pass word or phrase in the Key field.
Source:
Question 3: Is this e2ee that Jitsi offers the same as the Video Bridge Encryption that Brave offers? Has it been hardened from active attackers?
Questions have arisen about whether or not the Jitsi software that Brave Talk uses has been externally audited…
In any case, we used to list Jitsi but removed it because it has not had an external audit, as far as I can remember.
I did some research and unless I’m missing something, that hasn’t changed at this point, so it is unlikely we can recommend Brave Talk right now, given that it uses Jitsi itself.
Source: discuss.privacyguides(dot)net/t/opinions-about-brave-talk/258/2
Question 4: Has Brave Talk/Jistsi undergone a security audit by a credible 3rd party service?
One year ago someone posted on Reddit:
Why isn’t end-to-end encryption on by default in Brave Talk?
Source:
reddit(dot)com/r/brave_browser/comments/182phk8/why_isnt_endtoend_encryption_on_by_default_in/
…but no response. A good question.
Question 5: Why is Brave Talk not e2ee by default? And the chats too?
In Braves Glossary (brave(dot)com/glossary/encryption/):
Brave Talk supports E2EE in most situations.
Question 6: Which situations?
Question 7: It seems like encryption needs to be implemented manually? Which would preclude most situations, would it not, as most users will not familiarize themselves with all of the settings?
Enable Video Bridge Encryption (VBE): This is currently experimental. If you enable VBE, it will disable server side services such as recording, live streaming, and phone participation. Note that if you enable VBE but other participants do not, they won’t be able to see or hear you.
Source:
As far as logging IPs and other metadata, it does not seem that Brave keeps data after the call, (except when recorded):
We process the minimum information necessary to provide the Brave Talk service. This includes:
Your IP address and the URL of the meeting that will be processed only to enable calls; they are not retained after a call ends.
If you use the chat function, chats will be temporarily cached for the duration of the meeting.
If you record a meeting that you host, the recording will be temporarily stored on the server for 24 hours to allow you to download it. Your name and email address that you choose to display will be processed and available during the meeting.
Source:
So if someone was going to use the service in a no-trust context, they would want to use a VPN to hide their IP address.
I am going to hazard a guess. The stronger encryption setting (Video Bridge Encryption) requires everyone on the call to use that setting and to use one of the following browsers: Microsoft Edge, Google Chrome, Brave or Opera.
Such requirements would make access to the service more limited and complicated. Thus, to keep things more user friendly, the default is less secure.
Question 8: Comments?
Note: the annoying limit of 4 links per post for new users to the forum prevented me from including several hyperlinks. Instead I wrote them like this example:
discuss.privacyguides(dot)net/t/opinions-about-brave-talk/258/2
This will require the reader to manually type in the URL and modify the (dot) to a “.”.