We have received several requests around video conferencing solutions over the past few weeks. While the official OIT conferencing solution is currently Skype For Business, we have received the most requests about Zoom.
Zoom is indeed a very easy to use solution that offers free conferences for up to 40 minutes as well as paid unlimited plans.
Is Zoom Secure?
Zoom has received several security criticisms recently due to enormous demand and usage during the COVID-19 crisis. The FBI has issued warnings around Zoom and several Philadelphia government agencies are currently restricting its use. However, Zoom and other outlets have released several guidelines on how to secure your Zoom conferences if you are the host.
Recommended Zoom Settings
Before the Meeting
When you log into the Zoom website, you can select the settings by clicking “Settings” on the left hand side of your profile. You will need to configure these setting from the web site and not the client on your computer.
Password protect your meetings
This setting prevents malicious users from guessing your meeting ID. There are a few locations where a password should be set.
Use a randomly generated meeting ID
By default, Zoom will give you a personal meeting ID that does not change. Anyone who would have joined your meeting previously would always know your personal meeting ID in the future and could join accidentally or maliciously. To add some confusion, this is a setting you turn off rather than on.
Do not allow participants to join before the host
This gives the host of the meeting the greatest control to see participants before they can interact with other participants.
There is also a waiting room feature that you can enable to have individual control of admitting each user.
In Meeting Controls
While you are in a meeting there are several security controls you have to oversee your meeting. To access them, float your mouse over the bottom of the meeting screen to show the toolbar. From the toolbar, select the Security icon.
Lock your meeting
Once your meeting has started and you are sure all of the participants you are expecting have joined, lock your meeting. Now new and uninvited guests cannot join.
Turn off Screen sharing
If you do not expect participants to share something then turn this off. Many security warnings of “Zoom bombing” are happening because users share something unwanted.
A Note on Privacy
Please keep in mind your surroundings as well as everyone else in your meeting especially if your meeting needs to contain personal or health related information. If you intend to use the meeting for this purpose especially HIPAA information, please check with your HIPAA privacy officer for guidance.
For more information, see Zoom’s web site where they have several other security recommendations.