[VOIPSEC] zFone
Mark Espe
mark.espe at nmwco.com
Wed Sep 14 10:46:29 CDT 2005
Do you know more details of the key verification? I'd hope the
endpoints would verify a hash of the D-H key rather than the actual key
since it is going over the network (even if it is obfuscated by being
spoken).
mark
-----Original Message-----
From: Voipsec-bounces at voipsa.org [mailto:Voipsec-bounces at voipsa.org] On
Behalf Of Brian Kim
Sent: Tuesday, September 13, 2005 10:35 AM
To: Alexander Ph. Lintenhofer; Voipsec at voipsa.org
Subject: Re: [VOIPSEC] zFone
On 9/12/05, Alexander Ph. Lintenhofer <lintenhofer at aon.at> wrote:
> I just read about Phil Zimmermanns new invention zFone and would like
to
> ask you about your opinion. What do you think about the
> authentication/identification scheme without a PKI?
I had the good fortune to be able to attend his briefing at Black Hat
and get a first hand look at Zimmerman's demo. I must say that it
looks like it has reasonably strong security, if for no other reason,
because of the nature of the media being transmitted. I'm not sure how
much you've read about it, but my understanding is that the phone uses
Diffie-Hellman key exchange to agree on cipher keys, then expects its
users to voice verify keys.
Ultimately, the security of this system relies on the difficulty of
successfully accomplishing a man-in-the-middle attack (or breaking the
AES encryption algorithm). This can range from a more trivial audio
substitution of the key during voice verification (which will likely
be subject to just plain sounding different during key verification)
to having a person (or more than one person) sit in the middle and
speak the two parts. Of course, the latter strategy would almost
certainly introduce errors as well as additional delay, which will
likely push it into the realm of unacceptability.
I think it's a good solution which is adequate for typical privacy
needs. However, all Zimmerman has managed to do is find a niche in
which PKI probably isn't necessary in the general case.
Brian
(of course, this is all my opinion and strictly my opinion --
especially not that of my employer(s), the government, god or my cat)
_______________________________________________
Voipsec mailing list
Voipsec at voipsa.org
http://voipsa.org/mailman/listinfo/voipsec_voipsa.org
More information about the Voipsec
mailing list