Rose, S.
(2014),
Trust Issues with Opportunistic Encryption, A W3C/IAB workshop on Strengthening the Internet Against Pervasive Monitoring (STRINT), London, -1
(Accessed November 21, 2024)
Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock (
) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
Trust Issues with Opportunistic Encryption
Published
Author(s)
Abstract
Recent revelations have shed light on the scale of eavesdropping on Internet traffic; violating the privacy of almost every Internet user. In response, protocol designers, engineers and service operators have begun deploying encryption (often opportunistic) to protect the confidentiality of users' communications. The lack of authentication in opportunistic encryption could have the perverse affect of putting more end users at risk: thinking that they are "secure", an end user may divulge private information to an imposter instead of the service they believe they have contacted. When adding protection mechanisms to protocols, designers and implementers should not downplay the importance of authentication in order to make opportunistic encryption easier to deploy.Conference Dates
February 28-March 1, 2014
Conference Location
London
Conference Title
A W3C/IAB workshop on Strengthening the Internet Against Pervasive Monitoring (STRINT)
Pub Type
Conferences
Keywords
Authentication, Confidentiality, Internet
Citation
Issues
If you have any questions about this publication or are having problems accessing it, please contact reflib@nist.gov.
Created February 28, 2014, Updated May 4, 2021