Phone interception law, Was: Re: Gmail phone
Leigh Honeywell
leigh at hypatia.ca
Thu Dec 2 06:22:23 UTC 2010
On 10-12-02 12:54 AM, Michael Stathers wrote:
> If I wanted to have a top secret VoIP conversation I would probably set
> up a VPN tunnel with heavy encryption.
It depends on what your threat model is, but that's actually the IETF's
recommendation for securing VOIP - "wrap it in IPSEC".
zrtp / zphone is intended to be a bit more lightweight in terms of
deployment, but if you're up to setting up a VPN that's definitely the
way to go.
Paul Wouters and I gave a talk and workshop about doing this in mobile
environments at the 23rd Chaos Communication Congress:
http://events.ccc.de/congress/2006/Fahrplan/events/1495.en.html
Our conclusion at the time was that it wasn't feasible due to how GSM
networks behaved back in 2006. Today, over 3G and later, it's likely
quite possible.
-Leigh
More information about the ubuntu-ca
mailing list