Sure, here are a couple papers on the topic: https://www.cs.jhu.edu/~cwright/oak... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		JshWright on March 30, 2017 \| parent \| context \| favorite \| on: Voice Calls: Secure, Crystal-Clear, AI-Powered Sure, here are a couple papers on the topic: https://www.cs.jhu.edu/~cwright/oakland08.pdf https://www.cs.jhu.edu/~cwright/voip-vbr.pdf It's fundamentally very similar to the sorts of issues you end up with if you compress then encrypt. If the attacker can make some educated guesses about the plaintext prior to the compression, the compression ratio can be a very powerful tool in their arsenal.

walterbell on March 30, 2017 [–]

Wire implemented CBR for their encrypted calls, upstreamed it to WebRTC and submitted a patch to Signal, https://medium.com/wire-news/call-security-constant-bit-rate...

JshWright on March 30, 2017 | [–]

Silent Phone has used CBR since day 1.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact