[info] How the Greek cellphone network was tapped.

[Eugen Leitl]

----- Forwarded message from Ken Buchanan <ken.buchanan at gmail.com> -----

From: Ken Buchanan <ken.buchanan at gmail.com>
Date: Thu, 12 Jul 2007 09:46:48 -0400
To: alan <alan at clueserver.org>
Cc: Florian Weimer <fw at deneb.enyo.de>, ifarquha at cisco.com,
	John Ioannidis <ji at tla.org>, silvio at burst.net,
	"Perry E. Metzger" <perry at piermont.com>, cryptography at metzdowd.com
Subject: Re: How the Greek cellphone network was tapped.

On 7/9/07, alan <alan at clueserver.org> wrote:
>Makes me wonder how this will effect the OpenMoko phone if someone builds
>an encryption layer for it. (OpenMoko is a totally open sourced phone.)
>

Leigh Honeywell and Paul Wouters presented a 'crypto-phone' effort
they have been working on at CCC in Germany last December.

They later presented an update at a meeting in Toronto:
http://www.task.to/events/presentations/securephone-task.pdf

They are building on OpenMoko and the Neo1973 phone
(http://wiki.openmoko.org/wiki/Neo1973), because it is the only phone
they could find that allows OS modifications without breaking code
signing.

As I understand it, it's not true end-to-end.  It makes a 'VPN'
connection to an Asterisk PBX that you have configured somewhere in
the world, presumably on a phone network trusted more than the
wireless one you are currently on.  If the PBX has to route the call
back into public infrastructure to the other endpoint, then there is
cleartext exposure again.

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com

----- End forwarded message -----
-- 
Eugen* Leitl <a href="http://leitl.org">leitl</a> http://leitl.org
______________________________________________________________
ICBM: 48.07100, 11.36820 http://www.ativel.com http://postbiota.org
8B29F6BE: 099D 78BA 2FD3 B014 B08A  7779 75B0 2443 8B29 F6BE