Usable secure mailing lists with untrusted servers

Symposium on Identity and Trust on the Internet Pub Date : 2009-04-14 DOI:10.1145/1527017.1527032

R. Bobba, Joe Muggli, Meenal Pant, J. Basney, H. Khurana

{"title":"Usable secure mailing lists with untrusted servers","authors":"R. Bobba, Joe Muggli, Meenal Pant, J. Basney, H. Khurana","doi":"10.1145/1527017.1527032","DOIUrl":null,"url":null,"abstract":"Mailing lists are a natural technology for supporting messaging in multi-party, cross-domain collaborative tasks. However, whenever sensitive information is exchanged on such lists, security becomes crucial. We have earlier developed a prototype secure mailing list solution called SELS (Secure Email List Services) based on proxy encryption techniques [20], which enables the transformation of cipher-text from one key to another without revealing the plain-text. Emails exchanged using SELS are ensured confidentiality, integrity, and authentication. This includes ensuring their confidentiality while in transit at the list server; a functionality that is uniquely supported by SELS through proxy re-encryption. In this work we describe our efforts in studying and enhancing the usability of the software system and our experiences in supporting a production environment that currently is used by more than 50 users in 11 organizations. As evidence of its deployability, SELS is compatible with common email clients including Outlook, Thunderbird, Mac Mail, Emacs, and Mutt. As evidence of its usability, the software is being used by several national and international incident response teams.","PeriodicalId":269454,"journal":{"name":"Symposium on Identity and Trust on the Internet","volume":"9 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2009-04-14","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"9","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Symposium on Identity and Trust on the Internet","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/1527017.1527032","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 9

Abstract

Mailing lists are a natural technology for supporting messaging in multi-party, cross-domain collaborative tasks. However, whenever sensitive information is exchanged on such lists, security becomes crucial. We have earlier developed a prototype secure mailing list solution called SELS (Secure Email List Services) based on proxy encryption techniques [20], which enables the transformation of cipher-text from one key to another without revealing the plain-text. Emails exchanged using SELS are ensured confidentiality, integrity, and authentication. This includes ensuring their confidentiality while in transit at the list server; a functionality that is uniquely supported by SELS through proxy re-encryption. In this work we describe our efforts in studying and enhancing the usability of the software system and our experiences in supporting a production environment that currently is used by more than 50 users in 11 organizations. As evidence of its deployability, SELS is compatible with common email clients including Outlook, Thunderbird, Mac Mail, Emacs, and Mutt. As evidence of its usability, the software is being used by several national and international incident response teams.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

可用的安全邮件列表与不受信任的服务器

邮件列表是支持多方、跨域协作任务中的消息传递的自然技术。然而，只要在这样的列表上交换敏感信息，安全性就变得至关重要。我们早先开发了一个基于代理加密技术[20]的安全邮件列表解决方案原型，称为SELS(安全电子邮件列表服务)，它允许在不泄露明文的情况下将密文从一个密钥转换为另一个密钥。使用SELS交换的电子邮件确保了机密性、完整性和身份验证。这包括确保它们在列表服务器上传输时的保密性;这是SELS通过代理重新加密唯一支持的功能。在这项工作中，我们描述了我们在研究和增强软件系统可用性方面的努力，以及我们在支持生产环境方面的经验，该环境目前被11个组织的50多个用户使用。作为其可部署性的证据，SELS与常见的电子邮件客户端兼容，包括Outlook、Thunderbird、Mac Mail、Emacs和Mutt。作为其可用性的证据，该软件正在被几个国家和国际事件响应小组使用。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

Symposium on Identity and Trust on the Internet

自引率

0.00%

发文量