Improved group off-the-record messaging

Hong Liu; Eugene Y. Vasserman; Nicholas Hopper

doi:10.1145/2517840.2517867

Improved group off-the-record messaging

Hong Liu, Eugene Y. Vasserman, Nicholas Hopper

Computer Science and Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

13 Scopus citations

Abstract

Off-the-Record Messaging (OTR) is an online analogy of face-to-face private chat - messages are confidential and authenticated at the time of the conversation, but cannot later be used to prove authorship. The original OTR protocol is limited to two parties, and is extended by multi-party OTR (mpOTR) to the group chat setting. In doing this, mpOTR unintentionally weakens the security properties provided by its two-party predecessor. We propose an improved group OTR (GOTR)protocol that provides unconditional repudiability, and show how to obtain data origin authentication given this level of repudiability. GOTR resists network failure, colluding and independent malicious insiders, and provides efficient and flexible membership management. We analyze the security properties and performance of GOTR, and present measurement results of a proof-of-concept implementation of GOTR.

Original language	English (US)
Title of host publication	WPES 2013 - Proceedings of the 2013 ACM Workshop on Privacy in the Electronic Society, Co-located with CCS 2013
Pages	249-254
Number of pages	6
DOIs	https://doi.org/10.1145/2517840.2517867
State	Published - 2013
Event	1st ACM Workshop on Language Support for Privacy-Enhancing Technologies, PETShop 2013 - Co-located with the 20th ACM Conference on Computer and Communications Security, CCS 2013 - Berlin, Germany Duration: Nov 4 2013 → Nov 4 2013

Publication series

Name	Proceedings of the ACM Conference on Computer and Communications Security
ISSN (Print)	1543-7221

Other

Other	1st ACM Workshop on Language Support for Privacy-Enhancing Technologies, PETShop 2013 - Co-located with the 20th ACM Conference on Computer and Communications Security, CCS 2013
Country/Territory	Germany
City	Berlin
Period	11/4/13 → 11/4/13

Keywords

authentication
group communication
privacy
repudiability
robustness

Publisher link

10.1145/2517840.2517867

Find It

Find It at U of M Libraries

Cite this

Improved group off-the-record messaging. / Liu, Hong; Vasserman, Eugene Y.; Hopper, Nicholas.
WPES 2013 - Proceedings of the 2013 ACM Workshop on Privacy in the Electronic Society, Co-located with CCS 2013. 2013. p. 249-254 (Proceedings of the ACM Conference on Computer and Communications Security).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Liu, H, Vasserman, EY & Hopper, N 2013, Improved group off-the-record messaging. in WPES 2013 - Proceedings of the 2013 ACM Workshop on Privacy in the Electronic Society, Co-located with CCS 2013. Proceedings of the ACM Conference on Computer and Communications Security, pp. 249-254, 1st ACM Workshop on Language Support for Privacy-Enhancing Technologies, PETShop 2013 - Co-located with the 20th ACM Conference on Computer and Communications Security, CCS 2013, Berlin, Germany, 11/4/13. https://doi.org/10.1145/2517840.2517867

@inproceedings{cf467f778e3545f3a7be7a9aaa8054ad,

title = "Improved group off-the-record messaging",

abstract = "Off-the-Record Messaging (OTR) is an online analogy of face-to-face private chat - messages are confidential and authenticated at the time of the conversation, but cannot later be used to prove authorship. The original OTR protocol is limited to two parties, and is extended by multi-party OTR (mpOTR) to the group chat setting. In doing this, mpOTR unintentionally weakens the security properties provided by its two-party predecessor. We propose an improved group OTR (GOTR)protocol that provides unconditional repudiability, and show how to obtain data origin authentication given this level of repudiability. GOTR resists network failure, colluding and independent malicious insiders, and provides efficient and flexible membership management. We analyze the security properties and performance of GOTR, and present measurement results of a proof-of-concept implementation of GOTR.",

keywords = "authentication, group communication, privacy, repudiability, robustness",

author = "Hong Liu and Vasserman, {Eugene Y.} and Nicholas Hopper",

year = "2013",

doi = "10.1145/2517840.2517867",

language = "English (US)",

isbn = "9781450324854",

series = "Proceedings of the ACM Conference on Computer and Communications Security",

pages = "249--254",

booktitle = "WPES 2013 - Proceedings of the 2013 ACM Workshop on Privacy in the Electronic Society, Co-located with CCS 2013",

note = "1st ACM Workshop on Language Support for Privacy-Enhancing Technologies, PETShop 2013 - Co-located with the 20th ACM Conference on Computer and Communications Security, CCS 2013 ; Conference date: 04-11-2013 Through 04-11-2013",

}

TY - GEN

T1 - Improved group off-the-record messaging

AU - Liu, Hong

AU - Vasserman, Eugene Y.

AU - Hopper, Nicholas

PY - 2013

Y1 - 2013

N2 - Off-the-Record Messaging (OTR) is an online analogy of face-to-face private chat - messages are confidential and authenticated at the time of the conversation, but cannot later be used to prove authorship. The original OTR protocol is limited to two parties, and is extended by multi-party OTR (mpOTR) to the group chat setting. In doing this, mpOTR unintentionally weakens the security properties provided by its two-party predecessor. We propose an improved group OTR (GOTR)protocol that provides unconditional repudiability, and show how to obtain data origin authentication given this level of repudiability. GOTR resists network failure, colluding and independent malicious insiders, and provides efficient and flexible membership management. We analyze the security properties and performance of GOTR, and present measurement results of a proof-of-concept implementation of GOTR.

AB - Off-the-Record Messaging (OTR) is an online analogy of face-to-face private chat - messages are confidential and authenticated at the time of the conversation, but cannot later be used to prove authorship. The original OTR protocol is limited to two parties, and is extended by multi-party OTR (mpOTR) to the group chat setting. In doing this, mpOTR unintentionally weakens the security properties provided by its two-party predecessor. We propose an improved group OTR (GOTR)protocol that provides unconditional repudiability, and show how to obtain data origin authentication given this level of repudiability. GOTR resists network failure, colluding and independent malicious insiders, and provides efficient and flexible membership management. We analyze the security properties and performance of GOTR, and present measurement results of a proof-of-concept implementation of GOTR.

KW - authentication

KW - group communication

KW - privacy

KW - repudiability

KW - robustness

UR - http://www.scopus.com/inward/record.url?scp=84888997412&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84888997412&partnerID=8YFLogxK

U2 - 10.1145/2517840.2517867

DO - 10.1145/2517840.2517867

M3 - Conference contribution

AN - SCOPUS:84888997412

SN - 9781450324854

T3 - Proceedings of the ACM Conference on Computer and Communications Security

SP - 249

EP - 254

BT - WPES 2013 - Proceedings of the 2013 ACM Workshop on Privacy in the Electronic Society, Co-located with CCS 2013

T2 - 1st ACM Workshop on Language Support for Privacy-Enhancing Technologies, PETShop 2013 - Co-located with the 20th ACM Conference on Computer and Communications Security, CCS 2013

Y2 - 4 November 2013 through 4 November 2013

ER -

Improved group off-the-record messaging

Abstract

Publication series

Other

Keywords

Publisher link

Find It

Other files and links

Fingerprint

Cite this