A Study of Ten Popular Android Mobile VoIP Applications: Are the Communications Encrypted?

Author

Azfar, Abdullah ; Choo, Kim-Kwang Raymond ; Lin Liu

Author_Institution

Inf. Assurance Res. Group, Univ. of South Australia, Adelaide, SA, Australia

fYear

2014

fDate

6-9 Jan. 2014

Firstpage

4858

Lastpage

4867

Abstract

Mobile Voice over Internet Protocol (mVoIP) applications have gained increasing popularity in the last few years, with millions of users communicating using such applications (e.g. Skype). Similar to other forms of Internet and telecommunications, mVoIP communications are vulnerable to both lawful and unauthorized interceptions. Encryption is a common way of ensuring the privacy of mVoIP users. To the best of our knowledge, there has been no academic study to determine whether mVoIP applications provide encrypted communications. In this paper, we examine Skype and nine other popular mVoIP applications for Android mobile devices, and analyze the intercepted communications to determine whether the captured voice and text communications are encrypted (or not). The results indicate that most of the applications encrypt text communications. However, voice communications may not be encrypted in six of the ten applications examined.

Keywords

Internet telephony; cryptography; data privacy; mobile computing; smart phones; telecommunication security; Android mobile VoIP applications; Android mobile devices; Internet; Skype; lawful interceptions; mVoIP communications; mobile voice-over-Internet protocol; text communication encryption; unauthorized interceptions; user privacy; Cryptography; Entropy; Google; Mobile communication; Protocols; Smart phones;

fLanguage

English

Publisher

ieee

Conference_Titel

System Sciences (HICSS), 2014 47th Hawaii International Conference on

Conference_Location

Waikoloa, HI

Type

conf

DOI

10.1109/HICSS.2014.596

Filename

6759199