Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Trust Issues with Opportunistic Encryption

Published

Author(s)

Scott W. Rose

Abstract

Recent revelations have shed light on the scale of eavesdropping on Internet traffic; violating the privacy of almost every Internet user. In response, protocol designers, engineers and service operators have begun deploying encryption (often opportunistic) to protect the confidentiality of users' communications. The lack of authentication in opportunistic encryption could have the perverse affect of putting more end users at risk: thinking that they are "secure", an end user may divulge private information to an imposter instead of the service they believe they have contacted. When adding protection mechanisms to protocols, designers and implementers should not downplay the importance of authentication in order to make opportunistic encryption easier to deploy.
Conference Dates
February 28-March 1, 2014
Conference Location
London
Conference Title
A W3C/IAB workshop on Strengthening the Internet Against Pervasive Monitoring (STRINT)

Keywords

Authentication, Confidentiality, Internet

Citation

Rose, S. (2014), Trust Issues with Opportunistic Encryption, A W3C/IAB workshop on Strengthening the Internet Against Pervasive Monitoring (STRINT), London, -1 (Accessed November 24, 2024)

Issues

If you have any questions about this publication or are having problems accessing it, please contact reflib@nist.gov.

Created February 28, 2014, Updated May 4, 2021