مرکز منطقه ای اطلاع رساني علوم و فناوري - Secure and privacy enhanced email system as a cloud service

DocumentCode :

661160

Title :

Secure and privacy enhanced email system as a cloud service

Author :

Joyia, Amna ; Ghafoor, Abdul ; Sajjad, M. ; Choudhary, Muhammad Qaisar

Author_Institution :

Sch. of Electr. Eng. & Comput. Sci., Nat. Univ. of Sci. & Technol., Islamabad, Pakistan

fYear :

2013

fDate :

10-12 Sept. 2013

Firstpage :

Lastpage :

Abstract :

Most of the current email systems focus on the protection of email letters by using different cryptographic standards such as S/MIME, PGP. We analyzed these and found that an attacker can easily track the identities of communicating parties from email header which are normally transported in clear text. Furthermore, this information can be manipulated for malicious purposes like sending spam messages to the extracted user identities, analyzing traffic to extract the behavior of both sender and receiver. All these attacks lead to vivid threat to the user´s privacy. This paper describes the design and implementation of a secure and privacy enhanced email system which provides solution to ensure the privacy of its users. A completely different approach is taken to provide protection to user´s identitfy information and sensitive data using infrastructure level services for managing and exchanging anonymous identities. Furthermore the solution is compatible with existing system so any sort of change in the current system is not required.

Keywords :

IP networks; authorisation; cloud computing; computer network security; data privacy; electronic mail; telecommunication traffic; PGP; S/MIME; anonymous identity exchange; anonymous identity management; clear text; cloud service; communicating party identity tracking; cryptographic standards; e-mail letter protection; email header; information manipulation; infrastructure level services; malicious purposes; receiver behavior extraction; secure-privacy enhanced e-mail system; sender behavior extraction; sensitive data protection; spam messages; traffic analysis; user identity information protection; user privacy; Electronic mail; Privacy; Protocols; Reactive power; Receivers; Servers; Standards; Access control policy; Certification authority (CA); Infrastructure email server (IEMS); proxy server (PSA); spamming;

fLanguage :

English

Publisher :

ieee

Conference_Titel :

Digital Information Management (ICDIM), 2013 Eighth International Conference on

Conference_Location :

Islamabad

Print_ISBN :

978-1-4799-0613-0

Type :

conf

DOI :

10.1109/ICDIM.2013.6693986

Filename :

6693986

Link To Document :

https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=661160