As Slack makes it’s way deeper into the enterprise, it needs to layer on more sophisticated security measures just like the encryption key management feature it launched the last year. Today, the corporate published a blog post outlining its latest security technique, and while it still doesn’t include end-to-end encryption of Slack messaging, it’s a huge step forward.
For many firms, there’s a minimum level of security they may require before they use a tool like Slack company-wide, and that is significantly true for regulated industries. Slack is trying to answer a few of these concerns with today’s post.
As for finish-to-finish (E2E) encryption, Slack believes it will adversely affect the consumer experience and says there hasn’t been a lot of buyer demand for it so far. “If we had been to add E2E encryption, it could result in restricted functionality in Slack. With EKM (encryption key management), you gain cryptographic controls, offering visibility and opportunity for key revocation with granularity, management and no sacrifice to consumer experience,” a Slack spokesperson informed.
Today, the corporate supplies the ability for admins to require Touch ID or Face ID or to enter a passcode on a mobile device. As well as, if a person reports a device stolen, admins can wipe Slack conversations remotely, though that is currently only available through an API.
What they’ve coming quickly is a new administrative dashboard, where admins can handle all of this sort of security in a single place. They may even be capable of detecting if an individual is utilizing a jail-broken phone and shut down access to the phone. As well as, they may be able to force upgrades to the most recent version of Slack by not permitting access until the person downloads the latest version.