Gemalto on SIM card encryption issues: Case closed, job done

Screenshot 2015-02-23 09.43.44

If you were following the SIM card encryption key news stories buzzing around, you’ll have recognised that industry heavyweight, Gemalto, was mentioned quite a bit.

They’ve done their analysis and published their findings — and it makes excellent reading. Here are the key bullet points:

  • The investigation into the intrusion methods described in the document and the sophisticated attacks that Gemalto detected in 2010 and 2011 give us reasonable grounds to believe that an operation by NSA and GCHQ probably happened
  • The attacks against Gemalto only breached its office networks and could not have resulted in a massive theft of SIM encryption keys
  • The operation aimed to intercept the encryption keys as they were exchanged between mobile operators and their suppliers globally. By 2010, Gemalto had already widely deployed a secure transfer system with its customers and only rare exceptions to this scheme could have led to theft
  • In the case of an eventual key theft, the intelligence services would only be able to spy on communications on second generation 2G mobile networks. 3G and 4G networks are not vulnerable to this type of attack
  • None of our other products were impacted by this attack
  • The best counter-measures to these type of attacks are the systematic encryption of data when stored and in transit, the use of the latest SIM cards and customized algorithms for each operator

I think they’ve done a very comprehensive job. Nice work Gemalto.

Recently Published

“Apple will only sell 100,000 of their headsets in the first year” Really?

BGR reports a TrendForce estimate that Apple will sell 100k units of their new headset when released and says “but that’s still a big...

The BlackBerry Movie: Worth a look, but it’s heavy on fiction

I went to see the BlackBerry movie last night here in Dubai. I was astonished to find the movie theatre almost full, apart from...

Question: When is the only time a traffic jam is good news in the UK?

Answer: When you're sitting in the back of an Uber and you need reliable mobile signal. Boom! Sad, isn't it, dear reader? Travel all around...

Ah yes, an S23 with a BlackBerry Bold Keyboard: Exactly what I (think) I need

I was playing with Midjourney, the AI/photo generation service and I asked it to show me what a Samsung S23 would look like with...

It’s ok, your moon photos aren’t fake, they are just enhanced – quite a bit

Have you taken a photo of the moon recently? I almost did, the other day, when I spotted a fabulous moment here in Dubai....

Don’t move! You’ll jinx it! This looks like a tiny bit of innovation in the mobile world

It has been quite a while since I’ve seen anything in the mobile industry that’s caused me to want to write much. Just look...