Skip to main content

Twitter gets serious about user privacy with added encryption

twitter acquires zipdial bid expand presence emerging markets timeline
Image used with permission by copyright holder

Snooping on your Twitter account and direct messages just got a lot more difficult. On Friday, the social network announced that it has bolstered its system with a robust privacy technology that makes it extremely difficult for anyone – from Chinese hackers to NSA spies – to get a look at your Twitter data.

The encryption technology, which both Google and Facebook adopted after the leaks by former NSA contractor Edward Snowden, is called “perfect forward secrecy,” or PFS, and will work in conjunction with HTTPS encryption. Unlike HTTPS, which encrypts Internet traffic using a preset pair of “keys” that are stored on company servers for long periods of time, PFS creates an entirely new set of encryption keys for each user, every time a person logs into Twitter, either through the desktop or mobile websites, or through Twitter clients like TweetDeck. These keys are then destroyed after each session, making it nearly impossible for an “adversary,” as Twitter calls it, to steal the keys and grab user data.

“If an adversary is currently recording all Twitter users’ encrypted traffic, and they later crack or steal Twitter’s private keys, they should not be able to use those keys to decrypt the recorded traffic,” writes Twitter.

Digital rights advocacy group the Electronic Frontier Foundation (EFF) is a vocal proponent of PFS, and has been pushing for Web companies to implement the technology as a way to better protect user privacy.

“It may not be as obvious a step as simply enabling HTTPS, but turning on perfect forward secrecy is an important improvement that protects users,” wrote EFF’s Parker Higgins in a blog post. “More sites should enable it, and more users should demand it of the sites they trust with their private data.”

Twitter agrees with the EFF, saying that it believes perfect forward secrecy should become the “new normal” on the Web thanks to its ability to protect both private direct messages, as well as linked email addresses, and metadata like timestamps and sender/receiver data.

“At the end of the day, we are writing this not just to discuss an interesting piece of technology, but to present what we believe should be the new normal for Web service owners,” Twitter writes. “A year and a half ago, Twitter was first served completely over HTTPS. Since then, it has become clearer and clearer how important that step was to protecting our users’ privacy.”

Editors' Recommendations

Andrew Couts
Former Digital Trends Contributor
Features Editor for Digital Trends, Andrew Couts covers a wide swath of consumer technology topics, with particular focus on…
Twitter’s edit button could soon be free for all users
twitter

Ever since Elon Musk closed the deal to acquire Twitter for $44 billion last week, events have been moving fast at the social media company.

Musk and his inner circle, along with a number of senior executives who still have their jobs, reportedly spent the weekend trying to work out where exactly to take the platform and its global community of around 230 million people.

Read more
Twitter Blue is losing Ad Free Articles and Musk’s latest tweets indicate further changes
Twitter Blue menu option on a white screen background which is on a black background.

Twitter has reportedly ended its ad-free articles perk that it offered to Twitter Blue subscribers.

On Tuesday, 9to5Mac reported that Twitter has terminated a Twitter Blue feature known as "Ad-Free Articles." The feature allowed Twitter Blue subscribers to read articles without ads from participating publishers. The cancellation of Ad-Free Articles was apparently announced via an email sent to those publishers.

Read more
Something’s happening with Twitter’s most active users
A Twitter logo graphic.

Twitter is having difficulties holding on to its most active users, a new report suggests.

An internal document written by a Twitter researcher and seen by Reuters said that “heavy tweeters” have been in “absolute decline” on the platform since the start of the COVID-19 pandemic in early 2020.

Read more