BabelCrypt: The Universal Encryption Layer for Mobile Messaging Applications
作者: Ahmet Talha Ozcan , Can Gemicioglu , Kaan Onarlioglu , Michael Weissbacher , Collin Mulliner
DOI: 10.1007/978-3-662-47854-7_21
关键词: Encryption 、 Client-side encryption 、 Cryptographic protocol 、 User experience design 、 Computer network 、 Personalization 、 Off-the-Record Messaging 、 Computer science 、 Service provider 、 Social media
摘要: Internet-based mobile messaging applications have become a ubiquitous means of communication, and quickly gained popularity over cellular short messages (SMS). Unfortunately, from security point view, free services do not guarantee the privacy users. For example, providers can record store exchanged indefinitely to collect information about specific Moreover, these be accessed by criminals who gain access social media accounts. In this paper, we introduce BabelCrypt, system that addresses problem automatically retrofitting arbitrary chat with end-to-end encryption. Our works transparently interfacing original client supplied respective service providers. It does require any modification individual applications, nor it knowledge or customization for applications. BabelCrypt is able inject control in-band, using underlying application’s message exchange mechanism, thus supports running arbitrarily complex encryption protocols such as OTR. We successfully used number popular including Facebook Messenger, WhatsApp, Skype. evaluation shows provides while satisfactorily preserving user experience application.
springer.com
core.ac.uk
onarlioglu.com
neu.edu 参考文章(6)
Deborah Russell, Simson Garfinkel, PGP: Pretty Good Privacy ,(1994)
Ross Anderson, Hassen Saïdi, Rubin Xu, Aurasium: practical policy enforcement for Android applications usenix security symposium. pp. 27- 27 ,(2012)
Manuel Egele, David Brumley, Yanick Fratantonio, Christopher Kruegel, An empirical study of cryptographic misuse in android applications computer and communications security. pp. 73- 84 ,(2013) , 10.1145/2508859.2516693
Jinseong Jeon, Kristopher K. Micinski, Jeffrey A. Vaughan, Ari Fogel, Nikhilesh Reddy, Jeffrey S. Foster, Todd Millstein, Dr. Android and Mr. Hide Proceedings of the second ACM workshop on Security and privacy in smartphones and mobile devices - SPSM '12. pp. 3- 14 ,(2012) , 10.1145/2381934.2381938
Alexandra Boldyreva, Chengyu Song, Wenke Lee, Yeongjin Jang, Simon Chung, Billy Lau, Mimesis aegis: a mimicry privacy shield a system's approach to data privacy on public cloud usenix security symposium. pp. 33- 48 ,(2014)
Alexandra Boldyreva, Chengyu Song, Wenke Lee, Yeongjin Jang, Simon Chung, Billy Lau, Mimesis Aegis: A Mimicry Privacy Shield Georgia Institute of Technology. ,(2014)