Meta has implemented a new security system for end-to-end encrypted backups on WhatsApp and Messenger. The Backup Key Vault relies on hardware security modules (HSMs) to store recovery codes in tamper-resistant hardware. This ensures Meta cannot access the codes, even if cloud storage is compromised.
The system requires users to generate a recovery code when backing up messages. This code is then stored in the HSM-based vault. If a user loses their device, the recovery code can restore access without exposing the backup to Meta or third parties.
HSMs are specialized devices designed to prevent physical and digital tampering. They store cryptographic keys in isolated environments, making extraction nearly impossible. Meta’s system uses these modules to enforce strict access controls.
The company announced the update in a blog post on its engineering site. Engineers confirmed the system is now active for all users. Meta did not disclose technical details about the HSM deployment.
WhatsApp and Messenger users can now back up chats with stronger protections. The recovery process remains simple but relies on the user’s ability to keep the recovery code secure.
Source: engineering.fb.com