Discord is boosting user security with the rollout of end-to-end encryption (E2EE) for audio and video calls. This new protection, delivered through Discord’s DAVE protocol, enhances privacy by securing conversations across private channels, group chats, and server-based voice channels, preventing third parties from intercepting communications. However, messages on the platform remain unencrypted.
Discord’s DAVE Protocol: What You Need to Know
The DAVE protocol encrypts audio and video data using WebRTC encoded transform API technology. It ensures that only the participants in the call can decrypt the communication, effectively safeguarding it from external threats. Group communications are secured through Messaging Layer Security (MLS), which updates shared keys for encryption.
Interestingly, Discord allows users to verify their call security via out-of-band identity key comparisons, enhancing the overall trustworthiness of the system. However, E2EE is only supported when all participants are on the latest version of Discord’s desktop or mobile apps.
Collaborating for Security
To develop DAVE, Discord partnered with cybersecurity firm Trail of Bits to ensure a secure implementation of the protocol. Discord has also released the whitepaper and code for DAVE, promoting transparency and encouraging public feedback on the protocol’s performance and future improvements.
Limitations and Future Support
It’s important to note that while audio and video calls benefit from E2EE, messages remain unencrypted for moderation purposes. Additionally, the DAVE protocol is currently unavailable for Discord’s web client, though support is expected in the future. Users can start enjoying encrypted calls by updating their apps to the latest version.
