Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Mobile & Wireless

iPhone App “Signal” Enables Free Encrypted Phone Calls

Open Whisper Systems, the creators of the RedPhone secure calling app for Android, announced on Tuesday the availability of Signal, an iPhone application that lets users make encrypted voice calls worldwide for free.

Open Whisper Systems, the creators of the RedPhone secure calling app for Android, announced on Tuesday the availability of Signal, an iPhone application that lets users make encrypted voice calls worldwide for free.

According to the open source software group, Signal is specifically created for mobile devices and it’s fully compatible with RedPhone. The new application uses existing phone numbers and it’s designed to display only contacts that area reachable through Signal.

Users don’t need any passwords when utilizing the app. Instead, both the caller and the receiver are presented with a pair of words. If the words match on both ends, the connection is secure; if not, someone is possibly eavesdropping on the conversation. 

In order to ensure that communications are protected, Signal uses ZRTP, a protocol invented by Phil Zimmermann, who is also the creator of Pretty Good Privacy (PGP). In fact, Zimmermann also co-founded Silent Circle, a company providing encrypted communications services.

While Silent Circle and Open Whisper Systems develop similar solutions, the former’s services are not free. Signal is not only free, but it’s also open source, which allows anyone to review the code and contribute to making it better.

This summer, Open Whisper Systems plans on integrating support for text messages into the iPhone version of Signal, a feature that will be compatible with the TextSecure app for Android. In the future, TextSecure and RedPhone will be combined into a single Signal app for Android. The goal is to make Signal a unified secure communications platform for iPhone, Android and the browser, so the group is also working on an extension for Web browsers.

Open Whisper Systems was launched after Twitter acquired Whisper Systems, a company co-founded by security researcher Moxie Marlinspike, and decided to stop work on the RedPhone project. Both RedPhone and TextSecure were released as free and open source software shortly after the Twitter acquisition and their development continued under Open Whisper Systems.

Marlinspike, who has been actively involved in the project, told Wired that in addition to donations they’ve also received funding from the Open Technology Fund, which has also funded Tor and Cryptocat.

Written By

Eduard Kovacs (@EduardKovacs) is a contributing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Expert Insights

Related Content

Mobile & Wireless

Apple rolled out iOS 16.3 and macOS Ventura 13.2 to cover serious security vulnerabilities.

Mobile & Wireless

Technical details published for an Arm Mali GPU flaw leading to arbitrary kernel code execution and root on Pixel 6.

Mobile & Wireless

Apple’s iOS 12.5.7 update patches CVE-2022-42856, an actively exploited vulnerability, in old iPhones and iPads.

Mobile & Wireless

Two vulnerabilities in Samsung’s Galaxy Store that could be exploited to install applications or execute JavaScript code by launching a web page.

Mobile & Wireless

South Dakota Gov. Kristi Noem says her personal cell phone was hacked and linked it to the release of documents by the January 6...

Mobile & Wireless

Infonetics Research has shared excerpts from its Mobile Device Security Client Software market size and forecasts report, which tracks enterprise and consumer security client...

Cybercrime

A digital ad fraud scheme dubbed "VastFlux" spoofed over 1,700 apps and peaked at 12 billion ad requests per day before being shut down.

Cybersecurity Funding

Los Gatos, Calif-based data protection and privacy firm Titaniam has raised $6 million seed funding from Refinery Ventures, with participation from Fusion Fund, Shasta...