Opportunistic Encryption Everywhere
نویسنده
چکیده
Many of the core Internet protocols were designed for a less hostile network than the average packet finds itself in today. Many hosts are connecting over shared-key or open wireless networks where eavesdropping is trivial. On a larger scale, ISPs are experimenting with institutional sniffing where the clickstreams of the majority of users are observed and sold for their marketing value. Like the shift away from RSH and open mail relays, it’s our belief that all traffic should now be encrypted. As a practical matter this means opportunistic encryption, with all its complex trade-offs. In this paper, we explore these compromises and the design space of such a goal.
منابع مشابه
Enabling Email Confidentiality through the use of Opportunistic Encryption
Software for encrypting email messages has been widely available for more than 15 years, but the emailusing public has failed to adopt secure messaging. This failure can be explained through a combination of technical, community, and usability factors. This paper proposes a new approach to email security that employs opportunistic encryption and a security proxy to facilitate the opportunistic ...
متن کاملOpportunistic Encryption using IKE December 2005
This document describes opportunistic encryption (OE) as designed and implemented by the Linux FreeS/WAN project. OE uses the Internet Key Exchange (IKE) and IPsec protocols. The objective is to allow encryption for secure communication without any pre-arrangement specific to the pair of systems involved. DNS is used to distribute the public keys of each system involved. This is resistant to pa...
متن کاملHindering Eavesdropping via IPv6 Opportunistic Encryption
This paper presents an opportunistic encryption scheme strictly layered on top of IPv6. Assuming that a node needs to send data toward another node, our proposal enables the dynamic configuration of an encrypted tunnel between the two nodes’ IPsec gateways. The main contribution of this paper is to propose a solution that is fully distributed and does not rely on any global Trusted Third Party ...
متن کاملSimple Opportunistic Encryption
Network traffic encryption is becoming a requirement, not an option. Enabling encryption will be a communal effort so a solution that gives partial benefits until fully deployed is needed. A solution that requires little changes to existing infrastructure will also help as it can be quickly deployed to give immediate shortterm benefits. We argue that tcpcrypt, a TCP option for opportunistic enc...
متن کاملNew families of cryptographic systems
A symmetric encryption method based on properties of quasicrystals is proposed. The advantages of the cipher are strict aperiodicity and everywhere discontinuous property as well as the speed of computation, simplicity of implementation and a straightforward possibility of extending the method to encryption of higher dimensional data.
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2009