Chandran, Gowri R ; Nieminen, Raine ; Schneider, Thomas ; Suresh, Ajith (2023)
PrivMail: A Privacy-Preserving Framework for Secure Emails.
28th European Symposium on Research in Computer Security (ESORICS'23). The Hague, The Netherlands (25.09.2023 – 29.09.2023)
doi: 10.1007/978-3-031-51476-0_8
Konferenzveröffentlichung, Bibliographie
Kurzbeschreibung (Abstract)
Emails have improved our workplace efficiency and communication. However, they are often processed unencrypted by mail servers, leaving them open to data breaches on a single service provider. Public-key based solutions for end-to-end secured email, such as Pretty Good Privacy (PGP) and Secure/Multipurpose Internet Mail Extensions (S/MIME), are available but are not widely adopted due to usability obstacles and also hinder processing of encrypted emails. We propose PrivMail, a novel approach to secure emails using secret sharing methods. Our framework utilizes Secure Multi-Party Computation techniques to relay emails through multiple service providers, thereby preventing any of them from accessing the content in plaintext. Additionally, PrivMail supports private server-side email processing similar to IMAP SEARCH, and eliminates the need for cryptographic certificates, resulting in better usability than public-key based solutions. An important aspect of our framework is its capability to enable third-party searches on user emails while maintaining the privacy of both the email and the query used to conduct the search. To evaluate our solution, we benchmarked transfer and search operations using the Enron Email Dataset and demonstrate that PrivMail is an effective solution for enhancing email security.
| Typ des Eintrags: | Konferenzveröffentlichung |
|---|---|
| Erschienen: | 2023 |
| Autor(en): | Chandran, Gowri R ; Nieminen, Raine ; Schneider, Thomas ; Suresh, Ajith |
| Art des Eintrags: | Bibliographie |
| Titel: | PrivMail: A Privacy-Preserving Framework for Secure Emails |
| Sprache: | Englisch |
| Publikationsjahr: | September 2023 |
| Verlag: | Springer |
| Buchtitel: | Computer Security - ESORICS 2023 |
| Reihe: | Lecture Notes in Computer Science |
| Band einer Reihe: | 14345 |
| Veranstaltungstitel: | 28th European Symposium on Research in Computer Security (ESORICS'23) |
| Veranstaltungsort: | The Hague, The Netherlands |
| Veranstaltungsdatum: | 25.09.2023 – 29.09.2023 |
| Auflage: | 1. Edt. |
| DOI: | 10.1007/978-3-031-51476-0_8 |
| URL / URN: | https://link.springer.com/chapter/10.1007/978-3-031-51476-0_... |
| Zugehörige Links: | |
| Kurzbeschreibung (Abstract): | Emails have improved our workplace efficiency and communication. However, they are often processed unencrypted by mail servers, leaving them open to data breaches on a single service provider. Public-key based solutions for end-to-end secured email, such as Pretty Good Privacy (PGP) and Secure/Multipurpose Internet Mail Extensions (S/MIME), are available but are not widely adopted due to usability obstacles and also hinder processing of encrypted emails. We propose PrivMail, a novel approach to secure emails using secret sharing methods. Our framework utilizes Secure Multi-Party Computation techniques to relay emails through multiple service providers, thereby preventing any of them from accessing the content in plaintext. Additionally, PrivMail supports private server-side email processing similar to IMAP SEARCH, and eliminates the need for cryptographic certificates, resulting in better usability than public-key based solutions. An important aspect of our framework is its capability to enable third-party searches on user emails while maintaining the privacy of both the email and the query used to conduct the search. To evaluate our solution, we benchmarked transfer and search operations using the Enron Email Dataset and demonstrate that PrivMail is an effective solution for enhancing email security. |
| Fachbereich(e)/-gebiet(e): | 20 Fachbereich Informatik 20 Fachbereich Informatik > Praktische Kryptographie und Privatheit DFG-Sonderforschungsbereiche (inkl. Transregio) DFG-Sonderforschungsbereiche (inkl. Transregio) > Sonderforschungsbereiche DFG-Graduiertenkollegs DFG-Graduiertenkollegs > Graduiertenkolleg 2050 Privacy and Trust for Mobile Users DFG-Sonderforschungsbereiche (inkl. Transregio) > Sonderforschungsbereiche > SFB 1119: CROSSING – Kryptographiebasierte Sicherheitslösungen als Grundlage für Vertrauen in heutigen und zukünftigen IT-Systemen |
| Hinterlegungsdatum: | 25 Jul 2024 07:54 |
| Letzte Änderung: | 07 Nov 2024 07:53 |
| PPN: | 523287402 |
| Export: | |
| Suche nach Titel in: | TUfind oder in Google |
 |
Frage zum Eintrag |
Optionen (nur für Redakteure)
 |
Redaktionelle Details anzeigen |
Drucken
Impressum