Access to the data stored there is protected by
a symmetric encryption key that never leaves the local device.
There's one major benefit to doing encryption this way compare to
symmetric encryption.
Not exact matches
What would be considered due diligence (or whatever the proper term is) in preventing users in export - control blacklisted countries from accessing a web application that features strong
encryption software (
symmetric keys longer than 56 bits)?
Everything on Telegram, including chats, groups, media, etc. is encrypted using a combination of 256 - bit
symmetric AES
encryption, 2048 - bit RSA
encryption, and Diffie — Hellman secure key exchange.