There are over 4 billion wireless subscribers the world over and 80% out of them use GSM as their preferred system of communication, that by simple arithmetic would translate to some 3.2 billion humans. GSM has been known to be secure, since it uses a specialized digital modulation GMSK to be exact and also has built in security via the A5/1 Algorithm that was introduced somewhere in 1998. There are various variants of this algo i.e. the 64 bit version and the 128 bit version. Operators the world use different versions, some use the 64 bit while others have shifted to 128 bit version which is more secure.

Karsten Nohl a German engineer has broken the 64 bit version of the A5/1 algorithm and released his research online via BitTorrent. What this means at least theoretically is that voice conversations, SMS, and other E-commerce related financial transactions can be heard/intercepted, over the air. But this is true only for operators who have yet not shifted to the 128 bit A5/1 algorithm of the GSM standard.

Apart from this, hackers would need specialized hardware to eavesdrop in to the wireless GSM link, they would also require advanced Signal Processing software (something that is available thanks to Open Source). The engineer says he did it to coax operators (who haven’t shifted to the more secure version of the encryption) to make the switch. The GSM Group however, has termed Kohl’s work as illegal and adding that, “This is theoretically possible but practically unlikely”. Well whatever that means the fact of the matter is that the security was comprised and this calls for stringent actions.

This should serve as an eye opener for people using GSM systems.

If you enjoyed this post, you might want to subscribe our RSS feed or become our Facebook fan! You will get all the latest updates at both the places. Thank You!