Activities per year
Abstract
Deniable messaging protocols allow two parties to have ‘off-the-record’ conversations without leaving any record that can convince external verifiers about what either of them said during the conversation. Recent events like the Podesta email dump underscore the importance of deniable messaging to politicians, whistleblowers, dissidents and many others. Consequently, messaging protocols like Signal and OTR are designed with cryptographic mechanisms to ensure deniable communication, irrespective of whether the communications partner is trusted.
Many commodity devices today support hardware assisted remote attestation which can be used to convince a remote verifier of some property locally observed on the device.
We show how an adversary can use remote attestation to undetectably generate a non-repudiable transcript from any deniable protocol (including messaging protocols) providing sender authentication, proving to skeptical verifiers what was said. We describe a concrete implementation of the technique using the Signal messaging protocol. We then show how to design protocols that are deniable even against an adversary capable of attestation, and in particular how attestation itself can be used to restore deniability by thwarting realistic classes
of adversary.
Many commodity devices today support hardware assisted remote attestation which can be used to convince a remote verifier of some property locally observed on the device.
We show how an adversary can use remote attestation to undetectably generate a non-repudiable transcript from any deniable protocol (including messaging protocols) providing sender authentication, proving to skeptical verifiers what was said. We describe a concrete implementation of the technique using the Signal messaging protocol. We then show how to design protocols that are deniable even against an adversary capable of attestation, and in particular how attestation itself can be used to restore deniability by thwarting realistic classes
of adversary.
Original language | English |
---|---|
Title of host publication | Proceedings on Privacy Enhancing Technologies |
Publisher | De Gruyter |
Pages | 350–369 |
DOIs | |
Publication status | Published - 12 Jul 2019 |
MoE publication type | A4 Conference publication |
Event | Privacy Enhancing Technologies Symposium - Stockholm, Sweden Duration: 16 Jul 2019 → 20 Jul 2019 Conference number: 19 |
Publication series
Name | Proceedings on Privacy Enhancing Technologies |
---|---|
Publisher | De Gruyter |
Number | 3 |
Volume | 2019 |
ISSN (Electronic) | 2299-0984 |
Conference
Conference | Privacy Enhancing Technologies Symposium |
---|---|
Abbreviated title | PETS |
Country/Territory | Sweden |
City | Stockholm |
Period | 16/07/2019 → 20/07/2019 |
Fingerprint
Dive into the research topics of 'Circumventing Cryptographic Deniability with Remote Attestation'. Together they form a unique fingerprint.Activities
- 1 Conference presentation
-
The Undeniable Truth: How Remote Attestation Circumvents Deniability Guarantees in Secure Messaging Protocols
Gunn, L. (Speaker), Vieitez Parra, R. (Speaker) & Asokan, N. (Speaker)
5 Dec 2018Activity: Talk or presentation types › Conference presentation