Abstract
End-to-end encryption (E2EE) is becoming a standard feature in many popular chat apps, but independent security assessments of these implementations are limited. In this paper we provide the first independent analysis of E2EE features in LINE, a messaging application popular in Asian markets, and identify a replay attack and an attack on a lack of forward secrecy. Based on our analysis and communications with LINE about the vulnerabilities we discuss challenges and new research directions to better bridge vendors, researchers, and end-users around security issues.
Original language | English (US) |
---|---|
State | Published - 2017 |
Externally published | Yes |
Event | 7th USENIX Workshop on Free and Open Communications on the Internet, FOCI 2017, co-located with USENIX Security 2017 - Vancouver, Canada Duration: Aug 14 2017 → … |
Conference
Conference | 7th USENIX Workshop on Free and Open Communications on the Internet, FOCI 2017, co-located with USENIX Security 2017 |
---|---|
Country/Territory | Canada |
City | Vancouver |
Period | 8/14/17 → … |
ASJC Scopus subject areas
- Computer Networks and Communications
- Software