Skip navigation
Por favor, use este identificador para citar o enlazar este ítem: http://repositorio.unb.br/handle/10482/38690
Ficheros en este ítem:
Fichero Descripción Tamaño Formato  
ARTIGO_SecuringInstantMessages.pdf1,78 MBAdobe PDFVisualizar/Abrir
Título : Securing instant messages with hardware-based cryptography and authentication in browser extension
Autor : Rodrigues, Gabriel Arquelau Pimenta
Albuquerque, Robson de Oliveira
Alves, Gabriel de Oliveira
Mendonça, Fábio Lúcio Lopes de
Giozza, William Ferreira
Sousa Júnior, Rafael Timóteo de
Orozco, Ana Lucila Sandoval
metadata.dc.identifier.orcid: https://orcid.org/0000-0002-6717-3374
https://orcid.org/0000-0003-1101-3029
https://orcid.org/0000-0002-2846-9017
Assunto:: Criptografia
Autenticação (Documentos)
Mensagens eletrônicas - medidas de segurança
Protocolo - mensagens eletrônicas
Fecha de publicación : 11-may-2020
Editorial : IEEE
Citación : RODRIGUES, Gabriel Arquelau Pimenta et al. Securing instant messages with hardware-based cryptography and authentication in browser extension. IEEE Access, v. 8, 2020. DOI: 10.1109/ACCESS.2020.2993774. Disponível em: https://ieeexplore.ieee.org/abstract/document/9091122. Acesso em: 01 jul. 2020.
Abstract: Instant Messaging (IM) provides near-real-time communication between users, which has shown to be a valuable tool for internal communication in companies and for general-purpose interaction among people. IM systems and supporting protocols, however, must consider security aspects to guarantee the messages' authenticity, confidentiality, and integrity. In this paper, we present a solution for integrating hardware-based public key cryptography into Converse.js, an open-source IM client for browsers enabled with the Extensible Messaging and Presence Protocol (XMPP). The proposal is developed as a plugin for Converse.js, thus overriding the original functions of the client; and a browser extension that is triggered by the plugin and is responsible for calling the encryption and decryption services for each sent and received message. This integrated artifact allowed the experimental validation of the proposal providing authenticity of IM users with digital certificates and protection of IM messages with hardware-based cryptography. Results also shows the proposed systems is resistent to adversarial attacks against confidentiality and integrity and it is secure when considering cryptrographic tests like the Hamming distance and the NIST SP800-22.
Licença:: This work is licensed under a Creative Commons Attribution 4.0 License. For more information, see https://creativecommons.org/licenses/by/4.0/
DOI: 10.1109/ACCESS.2020.2993774
Aparece en las colecciones: Artigos publicados em periódicos e afins

Mostrar el registro Dublin Core completo del ítem " class="statisticsLink btn btn-primary" href="/jspui/handle/10482/38690/statistics">



Los ítems de DSpace están protegidos por copyright, con todos los derechos reservados, a menos que se indique lo contrario.