all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

The Effect of Length on Key Fingerprint Verification Security and Usability. (arXiv:2306.04574v1 [cs.CR])

Add to bookmarks
June 8, 2023, 1:10 a.m. | Dan Turner, Siamak F. Shahandashti, Helen Petrie

cs.CR updates on arXiv.org arxiv.org

In applications such as end-to-end encrypted instant messaging, secure email,
and device pairing, users need to compare key fingerprints to detect
impersonation and adversary-in-the-middle attacks. Key fingerprints are usually
computed as truncated hashes of each party's view of the channel keys, encoded
as an alphanumeric or numeric string, and compared out-of-band, e.g. manually,
to detect any inconsistencies. Previous work has extensively studied the
usability of various verification strategies and encoding formats, however, the
exact effect of key fingerprint length on …

adversary adversary-in-the-middle applications attacks channel detect device email encrypted end end-to-end fingerprint fingerprints hashes impersonation instant messaging key keys length messaging party secure email security truncated usability verification

Visit resource

More from arxiv.org / cs.CR updates on arXiv.org

IDEA: Invariant Defense for Graph Adversarial Robustness 1 day, 17 hours ago | arxiv.org
adversarial arxiv cs.cr cs.lg +4
BELT: Old-School Backdoor Attacks can Evade the State-of-the-Art Defense with Backdoor Exclusivity Lifting 1 day, 17 hours ago | arxiv.org
art arxiv attackers attacks +19
ZTD$_{JAVA}$: Mitigating Software Supply Chain Vulnerabilities via Zero-Trust Dependencies 1 day, 17 hours ago | arxiv.org
accelerate application application development arxiv +26
A Generative Framework for Low-Cost Result Validation of Machine Learning-as-a-Service Inference 1 day, 17 hours ago | arxiv.org
applications arxiv as-a-service cost +23
PA-Boot: A Formally Verified Authentication Protocol for Multiprocessor Secure Boot 1 day, 17 hours ago | arxiv.org
arxiv attack attacks attack surface +18
FairCMS: Cloud Media Sharing with Fair Copyright Protection 1 day, 17 hours ago | arxiv.org
arxiv cloud cloud platform copyright +16
Efficient unitary designs and pseudorandom unitaries from permutations 1 day, 17 hours ago | arxiv.org
algorithm arxiv construction cs.cr +9
Efficient and Near-Optimal Noise Generation for Streaming Differential Privacy 1 day, 17 hours ago | arxiv.org
arxiv cs.cc cs.cr cs.ds +11
Privacy-Preserving Statistical Data Generation: Application to Sepsis Detection 1 day, 17 hours ago | arxiv.org
application artificial artificial intelligence arxiv +19

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Senior Security Researcher, SIEM

@ Huntress | Remote Canada
View on infosec-jobs.com

Senior Application Security Engineer

@ Revinate | San Francisco Bay Area
View on infosec-jobs.com

Cyber Security Manager

@ American Express Global Business Travel | United States - New York - Virtual Location
View on infosec-jobs.com

Incident Responder Intern

@ Bentley Systems | Remote, PA, US
View on infosec-jobs.com

SC2024-003533 Senior Online Vulnerability Assessment Analyst (CTS) - THU 9 May

@ EMW, Inc. | Mons, Wallonia, Belgium
View on infosec-jobs.com
View more jobs