all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Preventing EFail Attacks with Client-Side WebAssembly: The Case of Swiss Post's IncaMail. (arXiv:2306.13388v1 [cs.CR])

Add to bookmarks
June 26, 2023, 1:10 a.m. | Pascal Gerig, Jämes Ménétrey, Baptiste Lanoix, Florian Stoller, Pascal Felber, Marcelo Pasin, Valerio Schiavoni

cs.CR updates on arXiv.org arxiv.org

Traditional email encryption schemes are vulnerable to EFail attacks, which
exploit the lack of message authentication by manipulating ciphertexts and
exfiltrating plaintext via HTML backchannels. Swiss Post's IncaMail, a secure
email service for transmitting legally binding, encrypted, and verifiable
emails, counters EFail attacks using an authenticated-encryption with
associated data (AEAD) encryption scheme to ensure message privacy and
authentication between servers. IncaMail relies on a trusted infrastructure
backend and encrypts messages per user policy. This paper presents a revised
IncaMail architecture …

attacks authentication case client client-side email emails encrypted encryption exploit html message plaintext secure email service vulnerable webassembly

Visit resource

More from arxiv.org / cs.CR updates on arXiv.org

Privacy Amplification for Matrix Mechanisms 16 hours ago | arxiv.org
algorithms amplification analysis art +16
Jailbreak and Guard Aligned Language Models with Only Few In-Context Demonstrations 16 hours ago | arxiv.org
alignment arxiv context cs.ai +11
FT-Shield: A Watermark Against Unauthorized Fine-tuning in Text-to-Image Diffusion Models 16 hours ago | arxiv.org
adaptation advancement applications arxiv +15
Are aligned neural networks adversarially aligned? 16 hours ago | arxiv.org
adversarial align alignment arxiv +17
Data Depth and Core-based Trend Detection on Blockchain Transaction Networks 16 hours ago | arxiv.org
arxiv assets blockchain blockchains +14
A New Linear Scaling Rule for Private Adaptive Hyperparameter Optimization 16 hours ago | arxiv.org
account arxiv cost cs.ai +11
RandOhm: Mitigating Impedance Side-channel Attacks using Randomized Circuit Configurations 16 hours ago | arxiv.org
arxiv attacks can channel +15
An algorithm for forensic toolmark comparisons 16 hours ago | arxiv.org
address algorithm analysis arxiv +11
Scalable and Adaptively Secure Any-Trust Distributed Key Generation and All-hands Checkpointing 16 hours ago | arxiv.org
applications arxiv blockchain challenges +10

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Incident Response Lead

@ Blue Yonder | Hyderabad
View on infosec-jobs.com

GRC Analyst

@ Chubb | Malaysia
View on infosec-jobs.com

Information Security Manager

@ Walbec Group | Waukesha, WI, United States
View on infosec-jobs.com

Senior Executive / Manager, Security Ops (TSSQ)

@ SMRT Corporation Ltd | Singapore, SG
View on infosec-jobs.com

Senior Engineer, Cybersecurity

@ Sonova Group | Valencia (CA), United States
View on infosec-jobs.com

Consultant (Multiple Positions Available)

@ Atos | Plano, TX, US, 75093
View on infosec-jobs.com
View more jobs