Alice and bob, who the foci are they? Analysis of end-to-end encryption in the line messaging application

Antonio M. Espinoza, William J. Tolley, Jedidiah R. Crandall, Andrew Hilts, Masashi Crete-Nishihata

Research output: Contribution to conferencePaperpeer-review

5 Scopus citations

Abstract

End-to-end encryption (E2EE) is becoming a standard feature in many popular chat apps, but independent security assessments of these implementations are limited. In this paper we provide the first independent analysis of E2EE features in LINE, a messaging application popular in Asian markets, and identify a replay attack and an attack on a lack of forward secrecy. Based on our analysis and communications with LINE about the vulnerabilities we discuss challenges and new research directions to better bridge vendors, researchers, and end-users around security issues.

Original languageEnglish (US)
StatePublished - 2017
Externally publishedYes
Event7th USENIX Workshop on Free and Open Communications on the Internet, FOCI 2017, co-located with USENIX Security 2017 - Vancouver, Canada
Duration: Aug 14 2017 → …

Conference

Conference7th USENIX Workshop on Free and Open Communications on the Internet, FOCI 2017, co-located with USENIX Security 2017
CountryCanada
CityVancouver
Period8/14/17 → …

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Software

Fingerprint Dive into the research topics of 'Alice and bob, who the foci are they? Analysis of end-to-end encryption in the line messaging application'. Together they form a unique fingerprint.

Cite this