Uncovering Spoken Phrases in Encrypted Voice over IP Conversations

Wright, Charles V.; Ballard, Lucas; Coull, Scott E.; Monrose, Fabian; Masson, Gerald M.

doi:10.1145/1880022.1880029

Cited by 37 publications

(20 citation statements)

References 35 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…For example, in certain circumstances the size of packets from a codec that compresses voice can be used to identify spoken phrases [11]. Such an attack could be applied in a femtocell setup.…”

Section: Discussionmentioning

confidence: 99%

Rogue femtocell owners: How mallory can monitor my devices

Malone

Kavanagh

Murphy

2013

2013 IEEE Conference on Computer Communications Workshops (INFOCOM WKSHPS)

View full text Add to dashboard Cite

Abstract-Femtocells are small cellular telecommunication base stations that provide improved cellular coverage. These devices provide important improvements in coverage, battery life and throughput, they also present security challenges. We identify a problem which has not been identified in previous studies of femtocell security: rogue owners of femtocells can secretly monitor third-party mobile devices by using the femtocell's access control features. We present traffic analysis of real femtocell traces and demonstrate the ability to monitor mobile devices through classification of the femtocell's encrypted backhaul traffic. We also consider the femtocell's power usage and status LEDs as other side channels that provide information on the femtocell's operation. We conclude by presenting suitable solutions to overcome this problem.

show abstract

Section: Discussionmentioning

confidence: 99%

Rogue femtocell owners: How mallory can monitor my devices

Malone

Kavanagh

Murphy

2013

2013 IEEE Conference on Computer Communications Workshops (INFOCOM WKSHPS)

View full text Add to dashboard Cite

show abstract

“…This information is particularly sensitive. Other research has shown that the throughput of Voice over Internet Protocol (VoIP) applications can be used to identify the language of speech (Wright, Ballard, Monrose, et al, 2007) and even to detect specific spoken phrases (Wright, Ballard, Coull, et al, 2010), thus allowing a no-permission app to eavesdrop on private phone conversations. This side channel may also allow an app to learn coarse-grain location information by monitoring the throughput of mapping apps as they load map segments as the user moves around.…”

Section: What Private Information Is Accessible By Android Apps That mentioning

confidence: 99%

Can Smartphones and Privacy Coexist? Assessing Technologies and Regulations Protecting Personal Data on Android and iOS Devices

Yerukhimovich¹,

Balebako²,

Boustead³

et al. 2016

View full text Add to dashboard Cite

“…A similar approach has been used to identify specific phrases in encrypted voice over IP (VOIP) traffic [15]. When variable bit rate encoding is used by the VOIP codec, the encodings of different classes of phonemes require predictable ranges of bit sizes; producing a vulnerability similar to the one in [14].…”

Section: Brief Survey Of Side-channel Attacks On Tunneled Protocolsmentioning

confidence: 99%

“…Instead of using standard HMM approaches that require an a priori known state space for training, we require no prior knowledge. Instead of using maximum likelihood metrics [4,5,[15][16][17], we combine HMMs with statistical hypothesis testing which provides a theoretical basis for determining threshold values [28][29][30]. Hypothesis testing allows us to determine the statistical significance of the inferred model, which in turn indicates whether or not the volume of training data is sufficient [28][29][30].…”

Section: Hmm Inferencementioning

confidence: 99%

Side-Channel Analysis for Detecting Protocol Tunneling

Bhanu¹,

Schwier²,

Craven³

et al. 2011

AIT

View full text Add to dashboard Cite

Protocol tunneling is widely used to add security and/or privacy to Internet applications. Recent research has exposed side channel vulnerabilities that leak information about tunneled protocols. We first discuss the timing side channels that have been found in protocol tunneling tools. We then show how to infer Hidden Markov models (HMMs) of network protocols from timing data and use the HMMs to detect when protocols are active. Unlike previous work, the HMM approach we present requires no a priori knowledge of the protocol. To illustrate the utility of this approach, we detect the use of English or Italian in interactive SSH sessions. For this example application, keystroke-timing data associates inter-packet delays with keystrokes. We first use clustering to extract discrete information from continuous timing data. We use discrete symbols to infer a HMM model, and finally use statistical tests to determine if the observed timing is consistent with the language typing statistics. In our tests, if the correct window size is used, fewer than 2% of data windows are incorrectly identified. Experimental verification shows that on-line detection of language use in interactive encrypted protocol tunnels is reliable. We compare maximum likelihood and statistical hypothesis testing for detecting protocol tunneling. We also discuss how this approach is useful in monitoring mix networks like The Onion Router (Tor).

show abstract

Uncovering Spoken Phrases in Encrypted Voice over IP Conversations

Cited by 37 publications

References 35 publications

Rogue femtocell owners: How mallory can monitor my devices

Rogue femtocell owners: How mallory can monitor my devices

Can Smartphones and Privacy Coexist? Assessing Technologies and Regulations Protecting Personal Data on Android and iOS Devices

Side-Channel Analysis for Detecting Protocol Tunneling

Contact Info

Product

Resources

About