Balancing Security and Usability in Encrypted Email

Balancing Security and Usability in Encrypted Email

End-to-end encryption is the best way to protect digital messages. Historically, end-to-end encryption has been extremely difficult for people to use, but recent tools have made it more broadly accessible, largely by employing key-directory services. These services sacrifice some security properties...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:IEEE internet computing 2017-05, Vol.21 (3), p.30-38
Hauptverfasser: Wei Bai, Doowon Kim, Namara, Moses, Yichen Qian, Kelley, Patrick Gage, Mazurek, Michelle L.
Format: Artikel
Sprache:eng
Schlagworte:
Computer security
Digital communication
Encryption
human factors
Internet/Web technologies
Privacy
Public key
public policy
security and privacy
Usability
usable security
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:End-to-end encryption is the best way to protect digital messages. Historically, end-to-end encryption has been extremely difficult for people to use, but recent tools have made it more broadly accessible, largely by employing key-directory services. These services sacrifice some security properties for convenience. The authors wanted to understand how average users think about these tradeoffs. They conducted a 52-person user study and found that participants could learn to understand properties of different encryption models. Users also made coherent assessments about when different tradeoffs might be appropriate. Participants recognized that the less-convenient exchange model was more secure overall, but considered the registration model's security sufficient for most everyday purposes.
ISSN:1089-7801
1941-0131
DOI:10.1109/MIC.2017.57