Comments on: Voice encryption for mobile phones cracked: 12 out of 15 methods deemed insecure

By: Martin Guy

Martin Guy — Tue, 03 Jan 2012 00:56:00 +0000

… and phonecrypt runs on the phone itself, so Carrier IQ will bypass it on Android, Blackberry and iPhones, having direct access to the microphone and speaker (and SMS and button presses…)

By: Fabio Pietrosanti

Fabio Pietrosanti — Mon, 14 Jun 2010 02:37:56 +0000

Everything was clarified.

SecurStar GmbH was behind this FAKE SECURITY RESEARCH that crafted false information and was able to *CHEAT* all journalists.

It was a marketing promotion, now they even removed the website from the net in attempt to mitigate the scandal.

Please read here or google around, also theregister and networkworld reported it as being cheated:
http://bit.ly/9B7ZrA

Kind Regards,
Fabio Pietrosanti

By: Czeslaw

Czeslaw — Sun, 16 May 2010 15:00:59 +0000

Yeah some of them are really good!!

By: Brian

Brian — Thu, 08 Apr 2010 18:19:31 +0000

The other thing lacking here is a quality evaluation. Some of these products are junk, while others are government quality.

By: icbkr

icbkr — Thu, 08 Apr 2010 12:47:44 +0000

It’s “rohde-schwarz” you doof.

By: typhos

typhos — Sun, 31 Jan 2010 20:12:23 +0000

anyone who leaves a handset to be accessed is stupid…if you could get to the handset to install flexispy then you could eavesdrop the room or car.
this is the most pointless test !

By: Martin

Martin — Fri, 29 Jan 2010 15:33:20 +0000

ehhhhhhh???????????

If so they are really scammer, maybe it’s true that they have something to hide like their private cryptographic protocol?

Maybe there are german secret services behind them, not disclosing the crypto!

By: The analysis is a marketing activity of SecureStar to promote PhoneCrypt product.

Fri, 29 Jan 2010 15:31:58 +0000

Read the phonecrypt review compared to the others.

It’s not a security testing but more a marketing review.

Read “between the lines”, has not been written by a serious tester with the same “approach” used for other products.
But it used a “marketing oriented” language.

Be careful about the reliability of those reviews, is not an “independent hacker” but an anonymous identity backed by SecureStar GmbH to promote PhoneCrypt product.

By: Fabio Pietrosanti

Fabio Pietrosanti — Fri, 29 Jan 2010 14:01:36 +0000

The review does not consider the cryptographic strength.

Of all the product reviewed no one use opensource cryptography and no one use standard cryptography.
All them use “proprietary”, “closed”, “unknown” cryptographic system.

All are using only “proprietary”, closed and supposed to be backdoorred encryption system with:
- 0 transparency on cryptographic protocol (no one guarantee that’s secure or does not contain backdoors)
- 0 transparency on cryptographic implementation (no one guarantee that the proprietary cryptographic protocol implementation is secure).

Only the usage of ZRTP based secure solutions could be considered secure because match the criteria of transparency for the cryptographic protocol and their implementation.

Unfortunately all the others cannot be considered “secure” as cryptographic require transparency.

Fabio Pietrosanti

By: Anonymous

Anonymous — Fri, 29 Jan 2010 07:02:23 +0000

My god, you are such an amateur.