How to Verify Your WhatsApp and Messenger Backups Are Truly End-to-End Encrypted

Introduction

Meta has recently strengthened the security of end-to-end encrypted backups for WhatsApp and Messenger. Their system relies on a Hardware Security Module (HSM) based Backup Key Vault that stores recovery codes in tamper-resistant hardware, ensuring that neither Meta nor any third party can access your chat history. This guide will walk you through the key updates—over-the-air fleet key distribution for Messenger and the commitment to publish evidence of secure fleet deployments—and show you how to verify that your backups are protected.

What You Need

• WhatsApp or Messenger account with backups enabled
• Recovery code or passkey for your encrypted backup (if you use it)
• Internet access to read Meta’s whitepaper
• Optional: A tool to verify cryptographic signatures (e.g., OpenSSL or a browser extension)

Step-by-Step Guide

Step 1: Understand the Foundation – The HSM-Based Backup Key Vault

Before verifying, it helps to know how the system works. Meta’s HSM-based Backup Key Vault stores your recovery code inside tamper-resistant hardware security modules, distributed across multiple datacenters for resilience. This means your recovery code is never accessible to Meta or cloud storage providers. To start, read the whitepaper for a full technical specification.

Step 2: Check Your Backup Method – Passkey vs. Password

Late last year, Meta introduced passkeys as an easier way to activate end-to-end encrypted backups. If you use a password-based recovery code, ensure you have a strong, unique code. Go to your app’s backup settings:

• WhatsApp: Settings > Chats > Chat Backup > End-to-end encrypted backup
• Messenger: Menu > Privacy & Safety > Encrypted Backups

If you see an option for a passkey (or “recovery code”), you are covered by the HSM vault.

Step 3: Verify Over-the-Air Fleet Key Distribution (Messenger)

For Messenger, Meta now distributes HSM fleet public keys over the air to avoid requiring app updates. This process ensures that the keys your Messenger app receives are genuine. Here’s how to verify them:

1. When you set up an encrypted backup, the app will receive a validation bundle from the HSM fleet.
2. This bundle is signed by Cloudflare and countersigned by Meta.
3. Check that the bundle includes the Cloudflare signature. You can download the bundle and verify it using Cloudflare’s public key (available on Cloudflare’s website).
4. Cloudflare maintains an audit log of every validation bundle. If you have concerns, you can request audit logs (see the whitepaper for details).

This step proves that the fleet key was issued by a trusted HSM fleet and hasn’t been tampered with.

Step 4: Review Published Evidence of Fleet Deployments

Meta now publishes evidence of each new HSM fleet deployment on their blog. This demonstrates that the system operates as designed and that Meta cannot access your backups. Follow these steps:

• Visit Engineering at Meta and look for posts tagged “HSM fleet deployment” or “encrypted backups.”
• Each post will contain cryptographic proofs (e.g., signed hashes of the deployment configuration).
• Copy the hash and verify it against the one in the whitepaper’s audit section.

Since new fleets are deployed infrequently (every few years), this step is a one-time check for the current fleet.

Step 5: Follow the Audit Steps in the Whitepaper

Meta’s whitepaper, “Security of End-To-End Encrypted Backups,” includes an Audit section that explains how any user can independently verify the system. Here’s a condensed version:

1. Obtain the fleet key: Either from the hardcoded key in the WhatsApp app (if you use WhatsApp) or the over-the-air bundle (if you use Messenger).
2. Fetch the published evidence: Download the signed evidence from Meta’s blog or the HSM fleet’s public endpoint.
3. Verify signatures: Use the fleet key to verify the evidence’s signature.
4. Check consistency: Ensure that the evidence matches the expected deployment configuration (e.g., number of HSMs, datacenter locations).

By following these steps, you can confirm that Meta’s infrastructure is secure and that your backup’s recovery code is protected.

Tips and Best Practices

• Keep your recovery code safe: Store it offline (e.g., in a password manager or written down). If you lose it, you lose access to your backup forever.
• Enable end-to-end encryption: If you haven’t already, turn on encrypted backups in your app settings. Without it, your backups are not protected by the HSM vault.
• Use passkeys for convenience: Passkeys are not only easier but also more secure against phishing. If available, switch to passkeys.
• Stay updated: Meta may roll out new fleet deployments or verification methods. Check the Engineering at Meta blog periodically.
• Verify before trusting: Don’t just rely on Meta’s word. Use the steps above to independently verify the security of your backups.
• Read the full whitepaper: For a deep dive, read “Security of End-To-End Encrypted Backups”.

By following this guide, you can ensure that your WhatsApp and Messenger backups remain truly private and end-to-end encrypted.