2018 IEEE European Symposium on Security and Privacy (EuroS&P) 2018
DOI: 10.1109/eurosp.2018.00036
|View full text |Cite
|
Sign up to set email alerts
|

More is Less: On the End-to-End Security of Group Chats in Signal, WhatsApp, and Threema

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
1
1
1
1

Citation Types

0
40
0
2

Year Published

2018
2018
2020
2020

Publication Types

Select...
5
2
1

Relationship

0
8

Authors

Journals

citations
Cited by 78 publications
(42 citation statements)
references
References 16 publications
0
40
0
2
Order By: Relevance
“…We survey some of the most popular, giving asymptotic efficiencies for three main designs in Table 1 on the next page. In concurrent work, [44] examine the group messaging protocols used by WhatsApp, Signal and Threema, finding a number of vulnerabilities related to their group operations.…”
Section: Deployed Implementationsmentioning
confidence: 99%
“…We survey some of the most popular, giving asymptotic efficiencies for three main designs in Table 1 on the next page. In concurrent work, [44] examine the group messaging protocols used by WhatsApp, Signal and Threema, finding a number of vulnerabilities related to their group operations.…”
Section: Deployed Implementationsmentioning
confidence: 99%
“…Existing secure group messaging protocols maintain the confidentiality and integrity properties in the presence of all types of adversary [4,15]. Closeness is sometimes weaker in existing protocols: for example, WhatsApp does not guarantee closeness in the presence of a malicious server [13]. However, group key agreement protocols that ensure closeness have been studied previously [7], so we do not consider this property further in this paper.…”
Section: Threat Model and Security Objectivesmentioning
confidence: 99%
“…(Sometimes transcript consistency is taken to mean that all group members must receive the same sequence of messages in the same order; for our purposes, it is su cient to require the weaker property that collaborators must receive the same set of messages, regardless of order.) Not all messaging protocols provide this property; for example, Signal does not ensure transcript consistency in the presence of a malicious user [13]. However, the property can be implemented as a separate layer on top of an existing messaging protocol.…”
Section: Convergence Of Shared Statementioning
confidence: 99%
“…Whatsapp uses Off the Record, Perfect Forward Secrecy and Double Ratchet Algorithm [8], [9] to secure all message communications on Whatsapp [10] and even databases that are used as data storage as well in passwords using unique keys and it will not same for every device that installed Whatsapp like smartphone android or apple smartphones, by using 3 algorithms for secure message it doesn't mean guarantee the message were safety and not known by others. Tools such as Analyzer for Whatsapp used to analyze words or phrases it take all the data messages that are in Whatsapp application and sent in the form of text to email and maybe there is a function in application to backup data server that developer used [11].…”
Section: Introductionmentioning
confidence: 99%