Jogja Ponsel

PHIL ZIMMERMANN kicked off Defcon today with an update on Zfone, the VOIP encryption system he introduced at Defcon last year. This year, instead of having a hacked bit of code in python, there is code written in C, binaries for Windows and Linux, and things you can do to help.

The new code is not a standalone VOIP phone, instead it is a plugin for other VOIP phones that works over the top. Anything standards compliant should do the trick, that means basically not Skype. This puts Zfone in several interesting positions, both technically and legally.

Phil Zimmermann was pretty adamant about a few things that Zfone did not require, no PKI infrastructure, no SIP provider support, no third parties at all. This means that you don’t need the phone companies to buy in, you can just use Zfone without them being able to bother you. Why is this important? Well, as Phil put it, “phone companies don’t always have your best interests in mind”. Amen.

The more parties that you have involved, the more there is a chance that one will be co-opted. In this case, you need you and the other side, and if they are in someones pocket, little things like encryption don’t matter much do they?

The program also does not fall under the aegis of CALEA because that set of rights removal, I mean law enforcement tools, governs service providers who are not part of this. Now you know why Phil was so picky about the above set of nos.

If you want to play with Zfone, you can get a copy of it on this site, the third beta for Linux is now out, as is the second beta for Windows. It was requested that you get a copy and beat the hell out of it for bugs, Phil is funding this out of his own pocket, and the more testing he can get done, the better. Have at it people.

Source: theinquirer

Related Products