TY - GEN
T1 - P2P email encryption by an identity-based one-way group key agreement protocol
AU - Yeh, Jyh Haw
AU - Zeng, Fiona
AU - Long, Thomas
N1 - Publisher Copyright:
© 2014 IEEE.
PY - 2014
Y1 - 2014
N2 - As a result of high-tech companies such as Google, Yahoo, and Microsoft offering free email services, email has become a primary channel of communication. However, email service providers have traditionally offered little in the way of message privacy protection. This has made emails, of which billions are sent around the world on any day, an attractive data source for personal identity information thieves. Google was one of the first companies to provide substantial email privacy protection when they began using the HTTPS always-on option to encrypt messages sent through their email service, Gmail. Unfortunately, Gmail's encryption option does not offer true point-to-point encryption since the encrypted emails are decrypted and stored in plaintext form on Google's servers. This type of approach poses a security vulnerability which is unacceptable to security-minded users such as highly sensitive government agencies and private companies. For these users, true point-to-point encryption is needed. This paper introduces an identity-based one-way group key agreement protocol and describes a point-to-point email encryption scheme based on the protocol. Both the security proofs and the efficiency analysis, with experimental results, of the new scheme are provided.
AB - As a result of high-tech companies such as Google, Yahoo, and Microsoft offering free email services, email has become a primary channel of communication. However, email service providers have traditionally offered little in the way of message privacy protection. This has made emails, of which billions are sent around the world on any day, an attractive data source for personal identity information thieves. Google was one of the first companies to provide substantial email privacy protection when they began using the HTTPS always-on option to encrypt messages sent through their email service, Gmail. Unfortunately, Gmail's encryption option does not offer true point-to-point encryption since the encrypted emails are decrypted and stored in plaintext form on Google's servers. This type of approach poses a security vulnerability which is unacceptable to security-minded users such as highly sensitive government agencies and private companies. For these users, true point-to-point encryption is needed. This paper introduces an identity-based one-way group key agreement protocol and describes a point-to-point email encryption scheme based on the protocol. Both the security proofs and the efficiency analysis, with experimental results, of the new scheme are provided.
KW - Bilinear pairings
KW - Identity-based encryption
KW - One-way group-key agreement
KW - P2P encryption
UR - http://www.scopus.com/inward/record.url?scp=84946557024&partnerID=8YFLogxK
U2 - 10.1109/PADSW.2014.7097879
DO - 10.1109/PADSW.2014.7097879
M3 - Conference contribution
AN - SCOPUS:84946557024
T3 - Proceedings of the International Conference on Parallel and Distributed Systems - ICPADS
SP - 760
EP - 767
BT - 2014 20th IEEE International Conference on Parallel and Distributed Systems, ICPADS 2014 - Proceedings
PB - IEEE Computer Society
T2 - 20th IEEE International Conference on Parallel and Distributed Systems, ICPADS 2014
Y2 - 16 December 2014 through 19 December 2014
ER -