Sciweavers

CEAS
2008
Springer

Improving Email Trustworthiness through Social-Group Key Authentication

14 years 2 months ago
Improving Email Trustworthiness through Social-Group Key Authentication
The increasing use of email for phishing and unsolicited marketing has reduced the trustworthiness of email as a communication medium. Sender authentication is a known defense against these attacks. Existing proposals for sender authentication either require infrastructural support or break compatibility with existing email infrastructure. We propose, implement, and evaluate social-group key authentication, an incrementally deployable and backward compatible sender authentication mechanism for email. Our solution requires honest majority instead of trust infrastructure or human input for correctness. In accordance with the end-to-end principle, authentication is implemented at the mail client by executing our previously proposed Byzantine fault tolerant public key authentication protocol [12] as an overlay on top of the mail transport protocol. We evaluated the authentication overhead by instrumenting our Thunderbird authentication plugin with synthetic data and found a user visible l...
Vivek Pathak, Liviu Iftode, Danfeng Yao
Added 12 Oct 2010
Updated 12 Oct 2010
Type Conference
Year 2008
Where CEAS
Authors Vivek Pathak, Liviu Iftode, Danfeng Yao
Comments (0)