all InfoSec news
SoK: Web Authentication in the Age of End-to-End Encryption
June 27, 2024, 4:19 a.m. | Jenny Blessing, Daniel Hugenroth, Ross J. Anderson, Alastair R. Beresford
cs.CR updates on arXiv.org arxiv.org
Abstract: The advent of end-to-end encrypted (E2EE) messaging and backup services has brought new challenges for usable authentication. Compared to regular web services, the nature of E2EE implies that the provider cannot recover data for users who have forgotten passwords or lost devices. Therefore, new forms of robustness and recoverability are required, leading to a plethora of solutions ranging from randomly-generated recovery codes to threshold-based social verification. These implications also spread to new forms of authentication …
age arxiv authentication backup challenges cs.cr data devices e2ee encrypted encryption end end-to-end forms lost messaging nature passwords recover regular services the age web web authentication web services
More from arxiv.org / cs.CR updates on arXiv.org
Jobs in InfoSec / Cybersecurity
Senior Systems Engineer - AWS
@ CACI International Inc | 999 REMOTE
Managing Consultant / Consulting Director / Engagement Lead in Cybersecurity Consulting
@ Marsh McLennan | Toronto - Bremner
Specialist , Fraud Investigation and SecOps
@ Concentrix | Bulgaria - Work at Home
Data Engineer, Mid
@ Booz Allen Hamilton | USA, CA, San Diego (1615 Murray Canyon Rd)
Manager, Risk Management
@ Manulife | CAN, Ontario, Toronto, 200 Bloor Street East
Regional Channel Manager (Remote - West)
@ Dell Technologies | Remote - California, United States (All Other)