At UserTesting, your security and privacy are extremely important to us. We’ve recently received some questions about the security of Live Conversation sessions using Zoom as the video conferencing software vendor. Here are some of the common questions we’ve heard:
Q: What does UserTesting do to prevent “Zoombombing”?
A: “Zoombombing” is a recent term describing a situation where uninvited attendees join and potentially disrupt a Zoom-hosted meeting. To protect Live Conversation sessions from Zoombombing, UserTesting requires a password for each session. Uninvited guests cannot join your session by guessing a 9 digit meeting ID. To keep the experience simple for you, we embed the meeting ID and password in the “Join” button used to join a meeting. A single click or tap starts the meeting with enhanced security.
Q: Is the “Join” button that UserTesting provides for Live Conversation sessions secure?
A: UserTesting uses industry best practices for the security of Live Conversation meetings. The URL embedded in your “Join” button is long and complex. It cannot readily be guessed. The password portion alone is 32 characters long.
Q: Can an uninvited user gain access to a meeting by viewing and entering a meeting ID in the Zoom window?
A: No. In the latest release of Zoom, the meeting ID is not visible. Even with a meeting ID, an uninvited user would not be able to access a meeting because all Live Conversation sessions also require a password.
Q: There were reports that there were some issues related to Zoom installation problems on Macs. Is installing Zoom on Macs safe?
A: An earlier version of the Zoom installer for Mac OS performed some tasks without permission. This approach potentially made it possible for malware to access the system undetected. Zoom updated their installers to fix the problem. Apple also made changes to prevent old installers from causing problems when they were still in use.
Q: There were reports that there were problems with Zoom exposing user credentials through chat. Has this issue been addressed?
A: An earlier version of Zoom included an issue related to chat in windows. This was fixed by Zoom shortly after it was reported.
Q: How does UserTesting transmit and store Live Conversation data and files?
A: We use industry best practices to protect the audio and video as it moves across the internet from participants to Zoom and from Zoom to the UserTesting platform. All transmissions are encrypted and the video is securely stored in the UserTesting environment and only accessible by authorized users.
Q: Where can I learn more about Zoom security?
A: Zoom has been posting information about their security on their blog.
Q: Where can I find additional information about UserTesting’s data and information security?