Lightweight encryption for email

Authors:
Ben Adida;Susan Hohenberger;Ronald L. Rivest
Affiliations:
MIT;MIT;MIT
Venue:
SRUTI'05 Proceedings of the Steps to Reducing Unwanted Traffic on the Internet on Steps to Reducing Unwanted Traffic on the Internet Workshop
Year:
2005

Citing 9
Cited 3

A public key cryptosystem and a signature scheme based on discrete logarithms

Proceedings of CRYPTO 84 on Advances in cryptology
Identity-based cryptosystems and signature schemes

Proceedings of CRYPTO 84 on Advances in cryptology
A method for obtaining digital signatures and public-key cryptosystems

Communications of the ACM
Identity-Based Encryption from the Weil Pairing

SIAM Journal on Computing
Cryptography and the Internet

CRYPTO '98 Proceedings of the 18th Annual International Cryptology Conference on Advances in Cryptology
A Practical Public Key Cryptosystem Provably Secure Against Adaptive Chosen Ciphertext Attack

CRYPTO '98 Proceedings of the 18th Annual International Cryptology Conference on Advances in Cryptology
Design principles and patterns for computer systems that are simultaneously secure and usable

Design principles and patterns for computer systems that are simultaneously secure and usable
Secure distributed key generation for discrete-log based cryptosystems

EUROCRYPT'99 Proceedings of the 17th international conference on Theory and application of cryptographic techniques
Efficient identity-based encryption without random oracles

EUROCRYPT'05 Proceedings of the 24th annual international conference on Theory and Applications of Cryptographic Techniques

Web wallet: preventing phishing attacks by revealing user intentions

SOUPS '06 Proceedings of the second symposium on Usable privacy and security
Intelligent phishing detection system for e-banking using fuzzy data mining

Expert Systems with Applications: An International Journal
From proxy encryption primitives to a deployable secure-mailing-list solution

ICICS'06 Proceedings of the 8th international conference on Information and Communications Security

Quantified Score

Hi-index	0.00

Visualization

Abstract

Email encryption techniques have been available for more than a decade, yet none has been widely deployed. The problems of key generation, certification, and distribution have not been pragmatically addressed. We recently proposed a method for implementing a Lightweight Public Key Infrastructure (PKI) for email authentication using recent developments in identity-based cryptography and today's existing Internet infrastructure. While this solution works well for email authentication, email encryption exhibits a different threat model that requires special treatment. In this work, we discuss how to achieve email encryption and present a realistic deployment and adoption process, while respecting the current functionality and expectations of email.