How to intercept Skype calls (scmagazine.com.au)
"Researchers have discovered trick that allows encrypted VoIP calls like Skype to be deciphered without the need to crack encryption.
The method, dubbed "Phonotactic Reconstruction", exploited the Linear Predictive Filter, a system used by Voice over Internet Protocol platforms to transmit conversations by creating data sets from spoken English.
The researchers from the University of North Carolina said while you shouldn't ditch Skype, cryptographic system that leaked as much information as they managed to get are immediately deemed insecure.
32 comments
[ 3.6 ms ] story [ 57.7 ms ] threadWhen your moneysack is bottomless you can do anything, no need to decrypt it, man-in-the-middle it, if that cant do, switch the victims CPU for your own "special" one. Intelligence organizations have been breaking silently into peoples homes for hundreds of years, its a skill well developed. To then change a chip on your computer, is peanuts.
I vaguely remember hearing other stories where chips were made with secret backdoors in them, but I can't seem to find any.
[1]: http://en.wikipedia.org/wiki/Clipper_chip
Why would you bother with CPU switching and such when you could just install an old fashioned microphone? If you were actually inclined to eavesdrop, it seems like hardware-subverting your PC is a lot more expensive and fragile than software or a specialty purpose bug elsewhere in the room.
https://secure.wikimedia.org/wikipedia/en/wiki/Traffic_analy...
Not really, just make the variability of bandwidth not depend on the amount of data that's being transmitted... i.e., add a stochastic factor to it (random). If there's enough noise, you probably shouldn't be able to decipher the words spoken.
- Skype's encryption algorithm is not, itself, broken;
- Skype uses a "prediction" algorithm to compress voice streams;
- therefore, words have a specific pattern of bandwidth use (toy example: "techcrunch" spikes around the "-crunch", since you'd expect "-nology");
- bandwidth use of encrypted compressed data is equal to bandwidth use of data that has only been compressed;
- these patterns (which can be detected "through" the encryption) allow fairly good reconstruction of the voice stream.
If you like this kind of thing, Google "ssh keystroke timing attacks", or, more generally, "traffic analysis".
Skype's encryption has not been cracked, but it is broken in the sense that it preserves exploitable structure in the ciphertext. The ciphertext should be essentially random, shouldn't it?
Encryption will keep your wife from reading your letters, but if you send a hundred letters a month to the new girl at work she might still get suspicious. Encryption does not promise to prevent that.
It's like a developer arguing that a project was completed exactly to spec, when the spec isn't what the client wanted, and the dev didn't make any real effort to understand what the client wanted.
You could always trade latency for security by batching more of the stream and encrypting larger blocks.
I wouldn't be too sure about that. http://cryptolib.com/ciphers/skype/ http://techcrunch.com/2010/07/08/skypes-innermost-security-l...
I never actually took the time to use it and I couldn't find any record of any details being revealed after 29c3, but it looks solid enough and one guy on a blog claimed to have written a python library using this C code and was able to get some PoC to work.
It's a facinitating piece of research, and a great collaberation between the CompSci and Linguistics depts of this University.
The title above is linkbait, as the paper is about analysing any variable bitrate audio stream. Mobile phones and enterprise VOIP solutions could be just as vulnerable. ]
Anyway, billions of people have unencrypted conversations through this telecommunications system called the plain old telephone service. At least Skype is one step better.
Yes, Skype traffic does pass through supernodes. I know people working on using Skype to route around censorship and supernodes allow you to connect two clients even if the direct connection between them is dropped. Here's an article in Skype about rate limiting if you're running as a super node which is further evidence that voice traffic does pass through super-nodes. http://forum.skype.com/index.php?showtopic=13780