Code That Protects Most Cellphone Calls Is Divulged
By KEVIN J. O'BRIEN
Published: December 28, 2009
BERLIN — A German computer engineer said Monday that he had deciphered and published the secret code used to encrypt most of the world's digital mobile phone calls, in what he called an attempt to expose weaknesses in the security of the world’s wireless systems.
The action by the encryption expert Karsten Nohl aimed to question the effectiveness of the 21-year-old GSM algorithm, a code developed in 1988 and still used to protect the privacy of 80 percent of the world's mobile calls.
“This shows that existing GSM security is inadequate,” Mr. Nohl, 28, told about 600 people attending the Chaos Communication Congress, a four-day computer hacker’s conference that runs through Wednesday here. “We are trying to push operators to adopt better security measures for mobile phone calls.”
The GSM Association, the industry group based in London that devised the algorithm and represents wireless operators, called Mr. Nohl’s efforts illegal and said they overstated the security threat to wireless calls.
“This is theoretically possible but practically unlikely,” said Claire Cranton, a GSM spokeswoman, noting that no one else had broken the code since its adoption. “What he is doing would be illegal in Britain and the United States. To do this while supposedly being concerned about privacy is beyond me.”
Some security experts disagreed. Stan Schatt, a vice president for health care and security at the technology market researcher ABI Research in New York, said companies and governmental organizations should take the same steps to ensure the security of their wireless conversations, as they do with anti-virus software for computer files.
“Organizations must now take this threat seriously and assume that within six months their organizations will be at risk unless they have adequate measures in place to secure their mobile phone calls,” Mr. Schatt said.
Mr. Nohl, who has a PhD. in computer engineering from the University of Virginia, is a widely consulted encryption expert who waged a similar campaign this year that prodded the DECT Forum, a standards group based in Berne, Switzerland, to upgrade the security algorithm for 800 million cordless home phones.
Mr. Nohl has now set his sights on GSM, whose second-generation digital technology is still the world’s most widely used wireless communication standard. About 3.5 billion of the world’s 4.3 billion wireless connections use GSM; it is used by about 299 million consumers in North America.
In August, at a hackers’ forum in Amsterdam, Mr. Nohl challenged other computer hackers to help him crack the GSM code. He said about 24 people, some members of the Chaos Computer Club, based in Berlin, worked independently to generate the necessary volume of random combinations until they reproduced the GSM algorithm’s code book — a vast log of binary codes that could theoretically be used to decipher GSM phone calls.
The code book, Mr. Nohl said, contains the equivalent of about two terabytes, or 2,000 gigabytes, of digital information, the equivalent of 100 high-definition films.
In an interview, Mr. Nohl said he took precautions to remain within legal boundaries, stressing that his efforts to crack the GSM algorithm were purely academic, kept within the public domain and the information was not used to decipher a digital call.
“We are not recommending people use this information to break the law,” Mr. Nohl said. “What we are doing is trying to goad the world's wireless operators to use better security.”
Mr. Nohl said the algorithm’s code book was available on the Internet through services like BitTorrent, which some people use to download massive quantities of data like films and music. He declined to provide a Web link to the code book, for fear of the legal implications, but said its location had spread by word of mouth through the hackers’ community.
The GSM algorithm, technically known as the A5/1 privacy algorithm, is a binary code — which is made exclusivel of 0’s and 1’s — that has kept digital phone conversations private since the GSM standard was adopted in 1988.
But the A5/1 algorithm is a 64-bit binary code, the modern standard at the time it was developed, but simpler compared with the 128-bit codes used today to encrypt calls on third-generation networks.
In 2007, the GSM developed a 128-bit successor to the A5/1, called the A5/3 encryption algorithm, but most network operators have not yet invested to make the security upgrade.
* 1
* 2
Next Page »
Sign in to Recommend Next Article in Technology (1 of 27) »
AI
