Tuesday, June 17, 2008

Breaking Phone-Call Encryption

Tuesday, June 17, 2008

Breaking Phone-Call Encryption

A data compression scheme could leave Internet phone calls vulnerable to eavesdroppers.

A technique for saving bandwidth in Internet phone calls could undermine their security, according to research recently presented at the IEEE Symposium on Security and Privacy. Johns Hopkins University researchers showed that, in encrypted phone calls using a certain combination of technologies, preselected phrases can be spotted up to 50 percent of the time on average, and up to 90 percent of the time under optimal conditions.

Voice-over-Internet-protocol (VoIP) phone calls, in which a computer converts a voice signal into data packets and sends them over the Internet, are increasingly popular for personal and business communication. Although most VoIP systems don't yet use encryption, says Jason Ostrom, director of the VoIP-exploitation research lab at Sipera Systems, it's absolutely necessary, particularly for business users. In many cases, security measures aren't in place because companies haven't realized how vulnerable VoIP can be, he says. He cites an assessment that he did for a hotel that uses VoIP phones, in which he showed that an attacker could access and record guests' calls using a laptop plugged into a standard wall connection. The Johns Hopkins researchers hope that pointing out possible holes in voice encryption systems can help ensure their security when they become more commonplace.

The Johns Hopkins attack takes advantage of a compression technique called variable-bit-rate encoding, which is sometimes used to save bandwidth in VoIP calls, explains Charles Wright, lead author of the paper. (Wright, who recently received his PhD from Johns Hopkins, will join the technical staff at the MIT Lincoln Laboratory in August.) Variable-bit-rate encoding, Wright says, adjusts the size of data packets being sent over the Internet based on how much information they actually contain. For example, when the person on one end of a VoIP call is listening rather than speaking, the packets sent from that person's computer shrink significantly. Also, packets containing certain sounds, such as "s" or "f," can take up less space than those containing more-complex sounds, such as vowels.

Encrypting the packets after they've been compressed scrambles their contents, making them look like gibberish. But it doesn't change their size, which is what would give away information to potential eavesdroppers.

Bandwidth savings, security loss: Eavesdroppers could listen for specific phrases in encrypted phone calls sent over the Internet, if the calls use a bandwidth-savings tool called variable-bit-rate encoding. Different sounds produce different quantities of information. At right, that difference can be seen in the sounds’ energy distributions across a range of frequencies. With variable-bit-rate encoding, different quantities of information yield different-sized data packets, represented at left as color coding across the audio waveform. An eavesdropper could listen for particular phrases by looking for patterns in the sizes of consecutive packets.
Credit: Charles Wright/Johns Hopkins University

In their tests, the Hopkins researchers simulated the packets that a combination of compression and encryption would produce for particular phrases. While an example of the way that a targeted speaker pronounced a particular phrase would give eavesdroppers a big advantage, they could still simulate the phrase using a pronunciation dictionary and a database of sample sounds from multiple speakers. The researchers can create many versions of the sounds in the phrase, which lets them accommodate different accents and other variations in pronunciation. They then use probabilistic methods to look for likely instances of the phrase. Wright says that the method can identify the phrase, on average, about half the time that it occurs, and that about half of the phrases it flags turn out to be exact matches of the desired phrase. In some circumstances, as when the phrases are longer, or when the speakers are particularly well matched to the simulated versions of the phrase, the accuracy became as high as 90 percent, Wright says. Because eavesdroppers have to know what phrase they're listening for, Wright says, "the threat would be more to technical, professional jargon than to an informal call between friends or family members."

While 50 percent accuracy may not sound like much, "these are encrypted conversations, so your expectation is not to be able to do this at all," says Fabian Monrose, an associate professor of computer science at Johns Hopkins, who was also involved in the research.

Matt Bishop, a professor of computer science at the University of California, Davis, agrees. "Fifty percent is quite scary," he says, "because what it means is that, in essence, you could potentially understand a fair portion of the conversation. The whole purpose of encryption is to prevent understanding." He adds that the attack is made more realistic by its ability to simulate phrases from standard sample sounds, which would be easier for an attacker to obtain than speech samples from the person he or she wants to spy on.

Sipera Systems' Ostrom says that he found the research particularly interesting "because it shows that you shouldn't feel safe just because you're using a security control. You still have to validate it to ensure that it meets your requirements." He adds, "In VoIP, there's always a fight between quality of service and security." The researchers' attack is a good example, he says, because it explores how an effort to improve quality of service by reducing bandwidth usage can affect efforts to protect calls. However, Ostrom notes that most corporations aren't currently using variable-bit-rate encoding and wouldn't now be at risk.

Wright and Monrose say that they see their work as more of a cautionary tale. Monrose says that recently he has been seeing drafts of technical specifications that call for variable-bit-rate encoders. "Our gut reaction was, this has privacy implications that people have not well studied," he says. The researchers say that they hope their work will prevent people from making design decisions in isolation and encourage them to think about solutions that will increase both efficiency and security. "If we start combining tools the way a lot of the specifications are calling for," Monrose says, "then we need to make sure that we do it in the right way."

No comments:

Post a Comment

Great Minds Have Similar Thoughts

Champions aren't made in gyms, champions are made from something they have deep inside them - a desire, a dream, a vision. They have to have last-minute stamina, they have to be a little faster, they have to have the skill and the will. But the will must be stronger than the skill.
-Muhammad Ali

I'll be more enthusiastic about encouraging thinking outside the box when there's evidence of any thinking going on inside it.
- Terry Pratchett

Not to be absolutely certain is, I think, one of the essential things in rationality.
- Bertrand Russell

What we think, or what we know, or what we believe is, in the end, of little consequence. The only consequence is what we do.
Sometimes what's right isn't as important as what's profitable.
- Trey Parker and Matt Stone

There are only two kinds of people who are really fascinating: people who know absolutely everything, and people who know absolutely nothing.
- Oscar Wilde

Sometimes I lie awake at night, and I ask, "Where have I gone wrong?"/ Then a voice says to me, "This is going to take more than one night."
- Charles M. Schulz

There is nothing worse than aggressive stupidity.
- Johann Wolfgang von Goethe

The significance of man is that he is insignificant and is aware of it.
- Carl Becker

A lie can travel halfway around the world while the truth is putting on its shoes.
- Mark Twain

"If you know how to spend less than you get, you have the philosopher's stone." So said Benjamin Franklin more than 200 years ago. How much easier it is to be critical than to be correct.
- Benjamin Disraeli

Of course the game is rigged. Don't let that stop you--if you don't play, you can't win.
- Robert Heinlein

Ability will never catch up with the demand for it.
- Malcolm Forbes

No man remains quite what he was when he recognizes himself.
- Thomas Mann

No man needs a vacation so much as the man who has just had one.
- Elbert Hubbard

There is no pleasure in having nothing to do; the fun is in having lots to do and not doing it.
- Mary Wilson Little

Books to the ceiling,/ Books to the sky,/ My pile of books is a mile high./ How I love them! How I need them!/ I'll have a long beard by the time I read them.
- Arnold Lobel

Leif Ostling said in a statement that his comments about Germany had been "interpreted in a way that was not intended."

If a man will begin with certainties, he shall end in doubts; but if he will be content to begin with doubts he shall end in certainties.
- Sir Francis Bacon

"It's not the voting that's democracy, it's the counting."
- Tom Stoppard

Elections are won by men and women chiefly because most people vote against somebody rather than for somebody.
- Franklin P. Adams

Invention is the mother of necessity.
- Thorstein Veblen

Don't try to solve serious matters in the middle of the night.
- Philip K. Dick

Das Loreleylied

Ich weiß nicht was soll es bedeuten
Daß ich so traurig bin;
Ein Märchen aus alten Zeiten,
Das kommt mir nicht aus dem Sinn.

Die Luft ist kühl und es dunkelt,
Und ruhig fließt der Rhein;
Der Gipfel des Berges funkelt
Im Abendsonnenschein.

Die schönste Jungfrau sitzet
Dort oben wunderbar,
Ihr goldenes Geschmeide blitzet,
Sie kämmt ihr goldenes Haar.

Sie kämmt es mit goldenem Kamme
Und singt ein Lied dabey;
Das hat eine wundersame,
Gewaltige Melodei.

Den Schiffer, im kleinen Schiffe,
Ergreift es mit wildem Weh;
Er schaut nicht die Felsenriffe,
Er schaut nur hinauf in die Höh´.

Ich glaube, die Wellen verschlingen
Am Ende Schiffer und Kahn;
Und das hat mit ihrem Singen
Die Lore-Ley getan.

Heinrich Heine, 1823

CURRENT MOON
moon phases

Logistics Log

Tuesday, June 17, 2008