Presentation is loading. Please wait.

Presentation is loading. Please wait.

Systematization of Knowledge

Published byAnissa Nelson Modified over 8 years ago

Similar presentations

Presentation on theme: "Systematization of Knowledge"— Presentation transcript:

1 Systematization of Knowledge
Secure Messaging Systematization of Knowledge Nik Unger, Sergej Dechand, Joseph Bonneau, Sascha Fahl, Henning Perl, Ian Goldberg, Matthew Smith

2 Increasing demand for secure messaging1
Motivation Increasing demand for secure messaging1 1Public Perceptions of S&P in the Post-Snowden Era (Pew Internet Research)

3 Which messenger should I use?

4 Messaging specific research challenges
Relevant for Academia? Academia vs. practice EFF Scorecard (>100 tools) Individual threat models and features Messaging specific research challenges Academic work often ignored in practice In-the-wild approaches unknown in academia Sparsely covered in academia but various tools in the wild

5 Evaluation criteria (academic concepts)
Our Goal Overview Evaluation criteria (academic concepts) Security Usability Adoption Highlight research challenges & perspectives

6 Conversation Security Transport Privacy
Problem Areas Trust Establishment Long-term key verification Conversation Security Crypto stuff Transport Privacy Meta-data protection

7 Conversation Security Transport Privacy
Problem Areas Trust Establishment Long-term key verification Conversation Security Crypto stuff Transport Privacy Meta-data protection

8

9 State of the art in Practice
“Trusted” third parties Key directories Manual verification Mostly optional

10 Manual Verification

11 Optional Verification

12 Transparency (Academic)
“Certificate Transparency for user keys” Practical issues (Inattentive) end users Key changes Multi-device management Privacy preservation Key change detected The server has published an unexpected key for you. If you haven’t re-installed this app recently, this may mean somebody is trying to intercept your communications. Check list of devices and keys

13 Alternative Solutions
Keybase OneName Namecoin

14 Conversation Security Transport Privacy
Problem Areas Trust Establishment Long-term key verification Conversation Security Crypto stuff Transport Privacy Meta-data protection

15 Conversation Security
Security on message level Confidentiality, Integrity, Authentication Forward / Backward Secrecy Asynchronous Users go offline Unreliable connections Without user interaction

16 Forward / Backward Secrecy
Easy in the web Most tools in practice Without PFS Require synchronicity Limited forward secrecy with key derivation Axolotl allows asynchronous PFS Needs more academic review

17 But wait!?

18 Async. Forward Secrecy Academic approaches
Hierarchical IBE (Canetti et al. 2003) not considered in practice Puncturable encryption (Green, Miers S&P 2015)

19 Remaining Challenges

20 Conversation Security Transport Privacy
Problem Areas Trust Establishment Long-term key verification Conversation Security Crypto stuff Transport Privacy Meta-data protection

21 Little progress in practice Usability and adoption implications
Transport Privacy Hide metadata Little progress in practice Few tools adopted (mostly Tor) Usability and adoption implications Delays Scalability issues SPAM / Flood abuse (dealt in Pond) Private contact discovery

22 Survey + Systematization Unconsidered approaches in both worlds
Takeaways Survey + Systematization Unconsidered approaches in both worlds Appeal for academic analysis Similar to SSL and Android research Security analyses Reach out to developers Security proofs are not enough

23 Acknowledgements Trevor Perrin Henry Corrigan-Gibbs

24 Credits Special thanks to all the people who made and released these awesome resources for free: Presentation template by SlidesCarnival Photographs by Unsplash & Death to the Stock Photo (license)

25 CSecurity is hard Source: GPG for Journalists - Windows edition (Edward Snowden)

26 Idea: publicly verifiable logs No user action for verification
Transparency Logs Idea: publicly verifiable logs No user action for verification Certificate Transparency Privacy issues Deployment issues End-user behaviour Gossiping not specified CONIKs3 Blockchain solutions

27 Table 2 all sovled

28 Table 3

29 Asynchronous Forward Secrecy

30 Axolotl (in-the-wild)
Diffie-Hellman ratcheting Symmetric ratchet Symmetric ratchet Diffie-Hellman ratcheting

Download ppt "Systematization of Knowledge"

Similar presentations

Internet Protocol Security (IP Sec)

Internet Protocol Security (IP Sec)
DIGITAL SIGNATURES and AUTHENTICATION PROTOCOLS - Chapter 13

DIGITAL SIGNATURES and AUTHENTICATION PROTOCOLS - Chapter 13
DIGITAL SIGNATURES and AUTHENTICATION PROTOCOLS - Chapter 13 DIGITAL SIGNATURES and AUTHENTICATION PROTOCOLS - Chapter 13 Digital Signatures Authentication.

DIGITAL SIGNATURES and AUTHENTICATION PROTOCOLS - Chapter 13 DIGITAL SIGNATURES and AUTHENTICATION PROTOCOLS - Chapter 13 Digital Signatures Authentication.
Security by Design A Prequel for COMPSCI 702. Perspective “Any fool can know. The point is to understand.” - Albert Einstein “Sometimes it's not enough.

Security by Design A Prequel for COMPSCI 702. Perspective “Any fool can know. The point is to understand.” - Albert Einstein “Sometimes it's not enough.
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
Cryptography and Network Security

Cryptography and Network Security
Internet Security Protocols

Internet Security Protocols
7-1 Chapter 7 – Web Security Use your mentality Wake up to reality —From the song, I've Got You under My Skin“ by Cole Porter.

7-1 Chapter 7 – Web Security Use your mentality Wake up to reality —From the song, "I've Got You under My Skin“ by Cole Porter.
Security that is... Ergonomic, Economical and Efficient! In every way! Stonesoft SSL VPN SSL VPN.

Security that is... Ergonomic, Economical and Efficient! In every way! Stonesoft SSL VPN SSL VPN.
Cross Platform Single Sign On using client certificates Emmanuel Ormancey, Alberto Pace Internet Services group CERN, Information Technology department.

Cross Platform Single Sign On using client certificates Emmanuel Ormancey, Alberto Pace Internet Services group CERN, Information Technology department.
Encryption and Firewalls Chapter 7. Learning Objectives Understand the role encryption plays in firewall architecture Know how digital certificates work.

Encryption and Firewalls Chapter 7. Learning Objectives Understand the role encryption plays in firewall architecture Know how digital certificates work.
CS470, A.SelcukReal-Time Communication Issues1 Real-Time Communication Security IPsec & SSL Issues CS 470 Introduction to Applied Cryptography Instructor:

CS470, A.SelcukReal-Time Communication Issues1 Real-Time Communication Security IPsec & SSL Issues CS 470 Introduction to Applied Cryptography Instructor:
19.1 Silberschatz, Galvin and Gagne ©2003 Operating System Concepts with Java Chapter 19: Security The Security Problem Authentication Program Threats.

19.1 Silberschatz, Galvin and Gagne ©2003 Operating System Concepts with Java Chapter 19: Security The Security Problem Authentication Program Threats.
 Authorization via symmetric crypto  Key exchange o Using asymmetric crypto o Using symmetric crypto with KDC  KDC shares a key with every participant.

 Authorization via symmetric crypto  Key exchange o Using asymmetric crypto o Using symmetric crypto with KDC  KDC shares a key with every participant.
Cryptography and Network Security Chapter 17

Cryptography and Network Security Chapter 17
BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.

BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.
بسم الله الرحمن الرحيم NETWORK SECURITY Done By: Saad Al-Shahrani Saeed Al-Smazarkah May 2006.

بسم الله الرحمن الرحيم NETWORK SECURITY Done By: Saad Al-Shahrani Saeed Al-Smazarkah May 2006.
Key Distribution CS 470 Introduction to Applied Cryptography

Key Distribution CS 470 Introduction to Applied Cryptography
Internet Protocol Security (IPSec)

Internet Protocol Security (IPSec)

Similar presentations

Ads by Google