Has launched Code Verify in partnership with WhatsApp Cloudflare. According to the company, “Code Verify is being made open source so that other messaging services can enable people to verify that everyone else is using the code that is being served on the web.”
How code verification works on WhatsApp
Code Verify will work in Google Chrome, Firefox and Microsoft Edge web browsers. Once users install the Code Verify extension, it will automatically be pinned to their Firefox or Edge browser. However, Google Chrome users need to pin it themselves. When a user uses WhatsApp Web, the Code Verification extension will automatically compare the code received by the browser from WhatsApp Web. This will create a hash (which is like a fingerprint of the code) and then match the hash or fingerprint of the code shared by WhatsApp Web with Cloudflare.
* Once the code is matched and verified, the code verification icon will turn green in the user’s browser.
* If the code verify icon in the browser turns orange while the WhatsApp web is loading, it means that another browser extension is interfering with the ability to verify the WhatsApp web, or it means that the request time has expired and the page only needs to be. Refresh
* If the code verification icon in the browser turns red while the WhatsApp web is loading, it will indicate that there is a potential security issue with the WhatsApp code being served. Users can then take action, such as pausing other extensions, switching to a mobile version of WhatsApp, or downloading the source code to a third-party organization for analysis.
The Facebook-owned company claims that the idea is to compare the hash itself – to compare hashes to detect tampering or even corrupted files – but to automate it, scale it, and make sure it “only works” for WhatsApp users.