Jump to content
Mumble forums

CBR to avoid "uncovering" sniffing


Isaac
 Share

Recommended Posts

Specialized software can figure out with good certainty what was said over a VBR encrypted stream without decrypting the stream by analyzing the ups/downs in the bitrate.


Paper by some engineering school - http://www.cs.jhu.edu/~cwright/oakland08.pdf


Paper by some other school (university) - http://www.cs.unc.edu/~fabian/papers/foniks-oak11.pdf


Could an option be added to force the use of CBR (Constant Bit Rate) on the server?


Encryption is nice, but if 90% of the conversation can be figured out by software...it's not very private.


Thanks,

Isaac

Link to comment
Share on other sites

  • 2 weeks later...

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

 Share

×
×
  • Create New...