Charles Brookson – the man behind the encryption algorithms in GSM mobile networks – has collected his OBE from the Queen. Brookson led the team that produced the A5/1, A5/3 and A5/2 algorithms used by countless mobes worldwide to encrypt calls from eavesdroppers. He recently stepped down from his role as chairman of the GSM …
Yes, well done and thank you.
I do find it a bit strange that Mr Brookson is rightfully honoured for his contributions to ensuring that our privacy is protected by one arm of the government whilst another is bleating about how encryption is going to mean the end of the world and that the sky will fall in.
Again, thank you for doing something for the rest of us.
rightfully honoured for his contributions to ensuring that our privacy is protected by one arm of the government whilst another is bleating about how encryption is going to mean the end of the world and that the sky will fall in
Isn't it the same crypto that was generally considered staggeringly weak long before anybody had even heard of Snowden (was assumed completely broken in circa 1998)?
Uses a PSK stored by the (apparently idiot) SIM card maker, which means if you get into their gear you can just take all their keys. But I'm sure that would never happen.
I can make the leap between that tech and getting an OBE to be honest, surprised the CIA didn't award him the Intelligence Medal of Merit.
In all fairness I'm not sure if we blame the networks of him for all this but I think most people found GSM fairly sketchy on day 1.
Yes, Charles has been a great force in the world of Telecom Standards. Well done! We still enjoy toying with your excellent algos, (my boss said it was the Fr/De spooks that introduced the padding with zeroes in GSM, but who knows!)
My one mild gripe is why was it 'just' an OBE?, Sir Charles G4GBA sounds better and I think would befit the real contribution that Charles has made.
parenthetically, is it really 45 years ago that this was written about Charles in the RSARS 'Mercury'?
CHARLES BROOKSON, C/o .. Grove Road, Havant, Hants. Charles is another Cadet member, this time from Bradfield College, Berkshire, where he is with the Army Signals Section. Charles joined the Cadets in August 1968, has his Signals Classification and is No.2 operator of CCF Call-sign 6. Welcome to the Society, Charles. Tnx to 716 for the introduction.
Royal Signals, eh? who'd've thunk
Hardly. A5/1 may well have been a good crypto algorithm for its time, but our fine upstanding security services made sure it was weak enough for them to break, by nobbling the keys. A5/1 keys aren't 128 bit as originally proposed, nor 64 bit as later planned, but 64 bit with 10 bits set to zero - i.e. an effective length of just 54 bits.
Security services don't need to crack the encryption, all mobile networks have a lawful interception clause written into their licences. The security services can just wave a piece of paper to listen.
Of course they can't do this in countries where they don't have control, but then some countries are not allowed full strength encryption.
The general public might think that the security organs do not need to crack mobile phone encryption as they can listen straight off the switch.
Quite true. However, the network has to be provisioned so that what is required, snoop-wise is put into effect, and this leaves a growing trail that that becomes obvious to a surprisingly large number of people, even the ones who can barely tie their own shoe laces.
Understandably, some security agencies prefer just to listen and decrypt in real time, with or without trojan horse cells and "access" to the various networks own cells. This not only saves an unbelievable amount of admin, but also is much more secure. Some of the people who work in network security are weird enough to be automatic security risks.
all mobile networks have a lawful interception clause written into their licences
Yeah but then you have to go to court and explain why you need to tap somebody's comms and expect a competent person to not think you're full of it.
Gemalto is my answer to this statement.
She's representing the kingdom, not governing the country. She's well advised to keep her nose out of (nor be influenced by) political debates. By honouring this fine bloke for his achievements, she has proven to do just that.
Now, where's the like button for the Queen? For this OBE she clearly deserves an upvote! :)
Biting the hand that feeds IT © 1998–2021