UCL  IRIS
Institutional Research Information Service
UCL Logo
Please report any queries concerning the funding data grouped in the sections named "Externally Awarded" or "Internally Disbursed" (shown on the profile page) to your Research Finance Administrator. Your can find your Research Finance Administrator at https://www.ucl.ac.uk/finance/research/rs-contacts.php by entering your department
Please report any queries concerning the student data shown on the profile page to:

Email: portico-services@ucl.ac.uk

Help Desk: http://www.ucl.ac.uk/ras/portico/helpdesk
Publication Detail
ClaimChain: Improving the security and privacy of in-band key distribution for messaging
  • Publication Type:
    Conference
  • Authors:
    Kulynych B, Lueks W, Isaakidis M, Danezis G, Troncoso C
  • Publisher:
    ACM
  • Publication date:
    15/10/2018
  • Pagination:
    86, 103
  • Published proceedings:
    Proceedings of the ACM Conference on Computer and Communications Security
  • ISBN-13:
    9781450359894
  • Status:
    Published
  • Name of conference:
    2018 Workshop on Privacy in the Electronic Society
  • Conference place:
    Toronto, Canada
  • Conference start date:
    15/10/2018
  • Conference finish date:
    15/10/2018
  • Print ISSN:
    1543-7221
Abstract
© 2018 Copyright held by the owner/author(s). The social demand for email end-to-end encryption is barely supported bymainstream service providers. Autocryptisa new community-driven open specification for e-mail encryption that attempts to respond to this demand. In Autocrypt the encryption keys are attached directly to messages, and thus the encryption can be implemented by email clients without any collaboration of the providers. The decentralized nature of this in-band key distribution, however, makes it prone to man-in-the-middle attacks and can leak the social graph of users. To address this problem we introduce ClaimChain, a cryptographic construction for privacy-preserving authentication of public keys. Users store claims about their identities and keys, as well as their beliefs about others, in ClaimChains. These chains form authenticated decentralized repositories that enable users to prove the authenticity of both their keys and the keys of their contacts. ClaimChains are encrypted, and therefore protect the stored information, such as keys and contact identities, from prying eyes. At the same time, ClaimChain implements mechanisms to provide strong non-equivocation properties, discouraging malicious actors from distributing conflicting or inauthentic claims. We implemented ClaimChain and we show that it offers reasonable performance, low overhead, and authenticity guarantees.
Publication data is maintained in RPS. Visit https://rps.ucl.ac.uk
 More search options
UCL Researchers
Author
Dept of Computer Science
University College London - Gower Street - London - WC1E 6BT Tel:+44 (0)20 7679 2000

© UCL 1999–2011

Search by