WhatsApp now offers 'end-to-end' encrypted backups — here's how it works

WhatsApp now lets you fully encrypt your chat backups so that no one else —including WhatsApp — can see them.

"End-to-finish encrypted backups for WhatsApp starting to scroll out today," Facebook founder and CEO Mark Zuckerberg wrote in a message posted on his Facebook page today (Oct. xiv). "Proud of the team for continuing to lead on security for your individual conversations."

WhatsApp is notwithstanding rubber to use, despite story challenge otherwise
The all-time encrypted messaging apps
Plus: iPhone 13 launch — all the new products we expect at the Apple effect

"You can at present secure your end-to-end encrypted fill-in with either a password of your option or a 64-digit encryption key that only yous know," WhatsApp said in a blog postal service today. "Neither WhatsApp nor your fill-in service provider will be able to read your backups or access the primal required to unlock it."

End-to-terminate encryption commonly refers to information being transmitted from one client device to another, not to stored data as in these backed-up chats. WhatsApp is stretching the definition of the term by a bit to mean that no 1 but you volition have the encryption primal to unlock your stored backup.

However, WhatsApp even so won't store your fill-in itself. Equally earlier, yous tin dorsum upward your chats to Apple iCloud or Google Bulldoze, depending on whether yous're using an iPhone or an Android phone.

The end-to-stop encryption will be optional — you have to actively choose information technology — and is being rolled out slowly starting today. Not everyone will become information technology correct abroad.

One time yous cull to encrypt your chat backups, Facebook'southward engineering science team said in a blog post, any previous backups will exist deleted.

WhatsApp previously offered encryption of backups to iCloud, simply used a different mechanism that immune attackers to recall the encryption key if they could spoof the legitimate user'southward telephone number, as Forbes' Thomas Brewster explained in 2017.

How to enable end-to-cease encrypted WhatsApp backups

To become started with WhatsApp's stop-to-cease encrypted backups, make sure your iPhone or Android phone has the latest version of WhatsApp installed.

Caveat: Yous may or may not be able to practise this yet. Our Android telephone wasn't able to at the fourth dimension of this writing, despite running the latest version of WhatsApp. Simply here's how to find out.

ane. Find your Settings screen. On Android, you tin click the three vertical dots at the top of the WhatsApp principal screen.

2. Tap Chats.

3. Tap Conversation Backup.

4. Tap End-to-cease encrypted backup if it'southward offered.

5. Tap Continue and follow the instructions to create your personal encryption key (explained beneath).

half-dozen. Tap Washed when the process is finished.

One of the screens you will see when setting up end-to-end encrypted backups in WhatsApp. — (Image credit: Facebook)

How WhatsApp encrypted backups work

If you lot do choose to enable full backup encryption, the procedure begins with your phone locally generating a 256-chip (32-byte) encryption key. The key volition be used to encrypt your chat fill-in on your phone, and the encrypted backup will be uploaded to Google Drive or to iCloud.

Yous have a choice of two unlike ways to manage the WhatsApp fill-in encryption key. The first is riskier but offers more control; the 2nd unloads the management to WhatsApp in a way that shouldn't expose the encryption key to anyone else, at least in theory.

In the starting time option, y'all'll be given a 64-character version of the encryption key in hexadecimal notation. It will look similar a long string of digits plus the letters A through F, the latter representing the numbers 10 through fifteen. (Each character is 4 bits, or half a byte.)

Y'all will accept to write down or save this 64-graphic symbol string somewhere, such every bit with one of the best countersign managers. Simply y'all're responsible for the encryption key and WhatsApp won't be able to help you lot if y'all lose it.

When you need to call back your WhatsApp backup, such as when y'all're switching to a new telephone, you will have to enter or paste the 64-grapheme key into WhatsApp.

Here'southward a diagram showing how this works.

A diagram illustrating how a WhatsApp user can generate and retain a private backup encryption key. — (Image credit: Facebook)

The other option is to let WhatsApp handle the 32-byte central. This bit is somewhat complicated because you lot accept to create a new password (apparently different from your regular WhatsApp user password) to encrypt and decrypt the encryption fundamental.

The encrypted central volition itself be stored in something called the Backup Central Vault that lives in hardware security modules (HSMs) on at to the lowest degree 5 divide WhatsApp servers around the globe.

Y'all'll have to write downwards or save that password equally well, because a Facebook whitepaper explaining the technical details says that the Backup Cardinal Vault will "[render] the fundamental permanently inaccessible after a sure number of unsuccessful attempts to admission it." Too many wrong password entries, and you lot'll be locked out.

WhatsApp won't exist able to see your encryption key without knowing your password, states the Facebook Engineering web log mail: "WhatsApp volition know only that a key exists in the HSM. It will not know the fundamental itself."

In other words, your password unlocks the encryption central, and the key unlocks the stored backup. When you need to think your backup, WhatsApp on your phone volition reach out to WhatsApp'due south servers to recollect the encrypted version of the encryption key, which will then be decrypted on your telephone so that the decrypted key tin can decrypt the fill-in. Got that?

Here's diagram illustrating that process.

A diagram illustrating how WhatsApp servers can store a user's private backup encryption key. — (Image credit: Facebook)

Potential pitfalls of WhatsApp backup encryption

There are some possible drawbacks to this new form of optional fill-in encryption.

First, it should be easy plenty to retrieve backups when moving from an old iPhone to a new iPhone, or from an old Android telephone to a new Android phone, as long as your accept your backup countersign or encryption fundamental.

Only what about if you're switching between platforms? It doesn't seem like WhatsApp on Android can access iCloud, or that WhatsApp on iOS tin admission Google Drive. But at that place may be workarounds we're not aware of.

Second, you don't want to practise this on more than one phone at a time. As the Facebook whitepaper states, "finish-to-end encrypted backups are merely supported on a user's primary device."

3rd, the whitepaper says that "nosotros recommend that users who opt in to end-to-end encrypted backups also deselect WhatsApp from the apps that are included in their device-level backups."

That's considering chats stored on a telephone may be backed up in unencrypted form in the regular full-device backups unless the user exempts those chats from regular backups.

Here are WhatsApp'southward instructions on exempting chat backups from regular iCloud full-device backups. Note that, every bit WhatsApp says, "disabling automatic iCloud fill-in does non enable stop-to-end encrypted backup." You lot all the same have to gear up end-to-end encrypted backups manually.

Finally, as stated already, if you forget or lose your 64-character encryption key or your backup password, then you lot'll lose the fill-in entirely. Presumably you could just create a new password or encryption fundamental and outset over again. As long every bit the old WhatsApp chats are all the same stored on your phone, they won't exist entirely lost.