Systematization of threats and requirements for private messaging with untrusted servers. The case of E-mailing and instant

Interdisciplinary Research Group in Socio-technical Cybersecurity

Systematization of threats and requirements for private messaging with untrusted servers. The case of E-mailing and instant

Symeonidis Iraklis, Lenzini Gabriele
Abstract:
Modern email and instant messaging applications often offer private communications. In doing so, they share common concerns about how security and privacy can be compromised, how they should face similar threats, and how to comply with comparable system requirements. Assuming a scenario where servers may not be trusted, we review and analyze a list of threats specifically against message delivering, archiving, and contact synchronization. We also describe a list of requirements intended for whom undertakes the task of implementing secure and private messaging. The cryptographic solutions available to mitigate the threats and to comply with the requirements may differ, as the two applications are built on different assumptions and technologies.
Authors:
Symeonidis Iraklis, Lenzini Gabriele
Publication date:
February, 2020
Published in:
International Conference on Information Systems Security and Privacy
Reference:

Get in touch with us

SnT – Interdisciplinary Centre for Security, Reliability and Trust
29, Avenue J.F Kennedy L-1855 Luxembourg
info-irisc-lab@uni.lu