A VOIP encryption protocol the UK spy agency GHCQ is pushing for
mandatory adoption comes with a hidden surprise: a built-in backdoor
that lets anyone who has a master key decrypt the call. That’s according
to a security expert at University College in London, who published the
findings on his blog this week.
GCHQ told BBC News it did not recognize the findings.
Dr Murdoch says the backdoor makes it possible to undermine the system’s
overall security because the network operator can listen in to your
session, or enable someone else to. And anyone who hacks into the system
would be able to eavesdrop, he said.
“The existence of a master private key that can decrypt all calls past
and present without detection, on a computer permanently available,
creates a huge security risk, and an irresistible target for attackers,”
Murdoch wrote.
“Also calls which cross different network providers (e.g., between
different companies) would be decrypted at a gateway computer, creating
another location where calls could be eavesdropped.”
Didn’t recognise the findings, that’s pretty much British for “Shit, they’re on to us!” Any master key would be calculated in less than a month after launch and all VOIP would be insecure, including that business call between politicians… Sure do it…
We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits, as well as offering you affiliate links, and so on. By clicking “Accept”, or scrolling down, you consent to the use of ALL the cookies.
This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the ...
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
