BitTorrent battles accusations of VoIP, network clobbering

Doug Mohney — Tue, 02 Dec 2008 14:02:46 -0500

A full-blown blog-o-war has started between The Register and BitTorrent. A Register columnist said BitTorrent's uTorrent client is going to bring the internet to a crawl because of its preference for using UDP.

The use of UDP as UTorrent's default peer-to-peer protocol allegedly could make the amount of ungovernable traffic go through the roof, clobbering bandwidth, slowing gamers and VoIP. ISPs could control traffic flow by slowing down UDP traffic, but such a move would "utterly destroy VoIP," alleges The Register.

Techno sites have taken the cannon fodder and fired it with differing results. Excess UDP traffic could slow last-mile connections, say some, rather than bringing the whole Internet to its knees.

BitTorrent says The Register piece is "utter nonsense" and a switch to a UDP-based implementation of its client was intended to reduce internet congestion, not kill the Internet proper.

We suspect some of this brouhaha has to do with the fine British journalistic tradition (The Register is published in the UK) of running wild headlines and wilder stories to generate controversy and more readership. Gotta get those web hits up for the end of the year bonuses, wot?

For more:
- The Industry Standard raps on UDP vs TCP. Article.

Skype Wiretap Nuances

Doug Mohney — Tue, 10 Jun 2008 20:49:24 -0400

Skype says it is unable to comply with court-authorized wiretap requests, says News.com. A closer examination of the question and Skype's reply bears examination and thought.

News.com conducted a survey asking a number of big name vendors about the privacy of instant messaging and other services they offer. One of the questions was: "Have you ever received a subpoena, court order or other law enforcement request asking you to perform a live interception or wiretap, meaning the contents of your users' communications would be instantly forwarded to law enforcement?"

Skype's reply with underline emphasis provided by this reporter: "We have not received any subpoenas or court orders asking us to perform a live interception or wiretap of Skype-to-Skype communications. In any event, because of Skype's peer-to-peer architecture and encryption techniques, Skype would not be able to comply with such a request."

Skype doesn't say it hasn't received any requests to perform live interception of phone calls, just that nobody's asked them for Skype-to-Skype communication. This would imply that SkypeIn and SkypeOut, the services that touch the PSTN, might be fair game. The company has said in the past that it cooperates with all lawful requests from "relevant authorities," so a reasonable person might assume that if you're making calls through Skype that touch the PSTN, those calls could be subject to lawful intercept.

However, there's a rolling assumption that peer-to-peer calls that stick to Skype's peer-to-peer network and are encrypted with 256-bit AES are potentially untouchable, while centralized voice/VoIP services operated by Yahoo, AOL, Microsoft and others could be readily tapped.

Fanning the flames of speculation is Skype's closed software architecture and a large body of work by independent researchers that have going through detail reverse engineering of the program and how it works. Since Skype is a "black box," there is no way to know if there's a backdoor of sorts to tap into a client and copy the voice stream to somewhere else or any way to know if such a process was occurring.

For more:
- News.com's speculation that Skype is secure
- For security geeks, a very cool compilation of Skype independent security analysis

Related articles:
Skype resists inter-operability
Skype: Stand-by for violence with open telephony.
Do as we say, not as we do; Skype wants open access to wireless devices

Peer To Peer Architecture

BitTorrent battles accusations of VoIP, network clobbering

Skype Wiretap Nuances