The worst part about Comodo's letter to the public was how they claimed
that they never thought a nation state would attack them. If that's not
part of your threat model, what business do you have being part of Internet
Since VoIP calls may traverse untrusted networks, packets should be
encrypted to ensure confidentiality. However, we show that it is possible
to identify the phrases spoken within encrypted VoIP calls when the audio
is encoded using variable bit rate codecs. To do so, we train a hidden
Markov model using only knowledge of the phonetic pronunciations of words,
such as those provided by a dictionary, and search packet sequences for
instances of specified phrases. Our approach does not require examples of
the speaker's voice, or even example recordings of the words that make up
the target phrase.
V. Wright, et al.
abstract for "Uncovering Spoken Phrases in Encrypted Voice over IP Conversations"
I hacked Comodo from InstantSSL.it, their CEO's e-mail address email@example.com
Their Comodo username/password was: user: gtadmin password: globaltrust
Their DB name was: globaltrust and instantsslcms
-- "A message from Comodo
" — supposedly anyway
to post comments)