Slashdot Mirror
Security Flaws Allow Wiretaps to be Evaded
An anonymous reader writes "The New York Times is reporting that a team of researchers led by Matt Blaze has discovered that technology used for decades by law enforcement agents to wiretap telephones has a security flaw that allows the person being wiretapped to stop the recorder remotely. It is also possible to falsify the numbers dialed. The flaws are detailed in a paper being published by the IEEE. Someone who thinks he's being wiretapped can apparently just send a low tone down the line that turns off the recorder. The link has a demo."
Seriously, if I were planning a crime or terrorist act, you bet your ass I would encode all communication in some way -- whether it be encrypted emails or just a word code system over the phone that changes each time. This is similar to the Cold War days, when spies would leave innocent-looking messages in public places. Essentially, a non-computerized version of steganography.
Where there is a will, there is a way. Where there is a stupid or lazy criminal, there is a prison sentence.
24 beers in a case, 24 hours in a day. Coincidence? I think not!
RTWFA... The tried to force the Calea networks to keep the C-tone timeout. Congress didn't allow the force, but most Calea networks keep it anyway. Those that keep the C-tone are vulnerable to the same exploit.
In other words: Most of the time, in current conditions, this will work.
put the what in the where?
The FBI inadvertently taps my phone and learns that someone at the company I work for has just invented something that will make the company a ton of money. Do you really think those agents aren't going to call up their stock-brokers and say, "BUY! BUY! BUY!"
Listen, I hate the concept of a police state and wiretapping as much as the next guy, but this is a dumb defense. The SEC investigates transactions like that for a reason. "Gee, these two FBI agents who've never bothered to invest more than $10,000 in any single company, suddenly bought $400,000 worth of shares of this company at the perfect time and made $15,000,000. They might've been ridiculously lucky. Or more likely they might've had insider information. Let's look a little closer, shall we?"
The stock market is like the world's biggest casino, and the SEC is certainly no less watchful and no less hesitant to break your legs if you try to cheat them.
Random and weird software I've written.
You don't understand the problem. Extremely incriminating evidence can be obtained through traffic analysis, knowing who you talk to and when, without acquiring the actual content of your communications. That's what a "pen register" is -- traffic analysis of a telephone. Encrypting your calls or your emails won't help much if, for example, they can see you're talking to known terrorists.
Basically, there's a fairly high proportion of the wiretapping gear that's actually deployed is vulnerable, in spite of what the police PR folks say, and it's much easier to hack the pen-register technology (though probably impossible to prevent the phone company from giving a direct billing database feed to the Feds, which you probably can't hack.)
Bill Stewart
New Fast-Compression-only CPR http://preview.tinyurl.com/dy575ks
For the sake of free communication, I hope this stays like that in the UK then.
On a sidenote, there were some interesting papers published at this years Cyber Safety conference. Especially interesting in our context: Prepaid Mobile Phones: the Anonymity Question by Gordon Gow.
Windows is like decaf - it tastes like the real thing, but it won't get you through the day.
Since this works through SS7, and full call-control information is available, it's immune to any in-band tones.
See this old Slashdot article with more links.