Practical Attacks Against Encrypted VoIP Communications

At HackInTheBox KUL 2013, we demonstrated two possible techniques that could be used to perform side channel attacks on packet captures of encrypted VoIP communications.

The two techniques, Dynamic Time Warping and Profile Hidden Markov Models, can be used to detect spoken conversations in encrypted VoIP sessions when a Variable Bitrate Codec is used with a length preserving cipher. Ultimately, this poses a significant risk to the confidentiality of encrypted conversations and we demonstrated this, using Skype as a case study.

The slides for our presentation can be found below:

The associated source code will also be released in due course via our github page.

written by

MDSec Research

Ready to engage
with MDSec?

Copyright 2021 MDSec