Glance encrypts almost all sessions. Session traffic between each participant and the Glance service uses modern Transport Layer Security (TLS) technology.
Each participant's computer or mobile device uses TLS to negotiate the connection's CypherSuite and key length. Glance also sends each participant a digital certificate, signed by DigiCert or Thawte. The participant's browser can pass it to a certificate authority to validate Glance's identity before proceeding. Each connection is then encrypted using the strongest method the corresponding participant supports. SSL, TLSv1.0, and earlier transport security standards are not allowed.
Any participant that cannot establish a secure connection to an encrypted session is denied entry. Encryption can be enabled on a session-by-session basis by the host. Alternatively, the administrator can mandate that all sessions hosted by the group's users be encrypted.