Solved

Android encrypted wav file.

Posted on 2013-01-17
6
189 Views
Last Modified: 2014-11-06
Well One of my users encrypted a voice file they made with an App called Tapatalk on their Andriod 2.2 phone and had encryption on it. (They do not know what type they said just standard) They only have the file in a backup of the phone and that phone no longer exists.

Does anyone know how to get the encryption off the file so we can hear the contents again.
0
Comment
Question by:dgreenjr26
  • 2
  • 2
  • 2
6 Comments
 
LVL 8

Expert Comment

by:H
ID: 38789169
I would recommend installing Tapatalk on an android device, copy the encrypted file into the wav file directory. Tapatalk uses password based encryption. So you should be able to decrypt the wave file using the original password in tapatalk.
0
 

Author Comment

by:dgreenjr26
ID: 38789197
Unfortunately we tried this. The encryption was on the Android not Tapatalk. Any other suggestions?
0
 
LVL 8

Expert Comment

by:H
ID: 38789288
Oh well that's a different story. android uses linux dm-crypt for its standard encryption. This is touching on some Grey-Hat areas. But you will need to find some Brute-force decryption software and run the file through it. May take awhile. The faster the system/hardware/io the faster the decryption will take. I have read articles in the past that linux dm-crypt can be brute-forced decrypted. hint: search google for LUKS...Be careful with these tools. Lots of them are not safe and the websites are not all safe as well.
0
Give your grad a cloud of their own!

With up to 8TB of storage, give your favorite graduate their own personal cloud to centralize all their photos, videos and music in one safe place. They can save, sync and share all their stuff, and automatic photo backup helps free up space on their smartphone and tablet.

 
LVL 62

Expert Comment

by:btan
ID: 38792815
If you have these files in the link below -brute force may still be viable

http://forensics.spreitzenbarth.de/2012/02/28/cracking-pin-and-password-locks-on-android/

But since the phone is not avail and only encrypted file is left, I am thinking back of Android actual encryption used for the filesystem is 128 AES with CBC and ESSIV:SHA256. The master key is encrypted with 128 bit AES via calls to the openssl library. Disk encryption on Android is based on dm-crypt, which is a kernel feature that works at the block device layer. Not easily to simulate and recover w/o device. Going further the actual work is also done by "cryptfs" with command option such as are checkpw and etc.

http://source.android.com/tech/encryption/android_crypto_implementation.html

Saw some mention of change the password for the encryption but needed root access. The idea is have the UI sends the command "cryptfs changepw "to re-encrypts the disk master key with the new password.

http://code.google.com/p/android/issues/detail?id=29468

Not sure if this is best approach but not seems easy w/o having to get the password or those others file (in first link) to simulate.
0
 

Author Comment

by:dgreenjr26
ID: 40397321
Thank for all the input. But as it was stated no real good solution here. :-(
0
 
LVL 62

Accepted Solution

by:
btan earned 500 total points
ID: 40398284
not possible to direct decrypt w/o password unless there is backdoor. prev there is mentioned of issue password store in  plain, so I wonder if that is still valid in this case.
https://support.tapatalk.com/threads/serious-issue-tapatalk-app-saves-passwords-as-plain-text.16507/#post-83505
And it was in past mentioned  the server send base64 encoded password which Base64 cna be decoded easily if there is transaction capture
https://support.tapatalk.com/threads/password-encryption.3665/#post-15653
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A few customers have recently asked my thoughts on Password Managers.  As Security is a big part of our industry I was initially very hesitant and sceptical about giving a program all of my secret passwords.  But as I was getting asked about them mo…
When the confidentiality and security of your data is a must, trust the highly encrypted cloud fax portfolio used by 12 million businesses worldwide, including nearly half of the Fortune 500.
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

914 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now