Three Dutch security analysts discovered the vulnerabilities—five in total—in a European radio standard called TETRA (Terrestrial Trunked Radio), which is used in radios made by Motorola, Damm, Hytera, and others.

  • Ret the Folf@furry.engineer
    link
    fedilink
    arrow-up
    2
    ·
    1 year ago

    @cosmo @stefenauris @bersl2 agree except that TEA2/3 weren’t vulnerable *in this particular study*. ETSI/TCCA are (foolishly, I think) sticking to their guns on the algorithms being tightly controlled. Without proper, widespread academic scrutiny there is little confidence that they are *actually* secure.

    • Ret the Folf@furry.engineer
      link
      fedilink
      arrow-up
      3
      ·
      1 year ago

      @cosmo @stefenauris @bersl2 I like how the researchers in their release squarely blame the TEA1 issues on failure to adhere to Kerckhoffs’s principle; but ETSI in their response completely fail to address that and adopt a “this is fine” stance.