(P)KT-IEE: Secure key transparency protocols for interoperable end-to-end encrypted message systems

Neenu Garg; Mohammad Tariq Elahi

(P)KT-IEE: Secure key transparency protocols for interoperable end-to-end encrypted message systems

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

End-to-End-Encrypted (E2EE) messaging services are a key privacy enhancing technology enabling free and open speech on the Internet. They are widely deployed and very popular with large userbases. E2EE relies critically on the trustworthy distribution and storage of users’ public keys. To that end, Key Transparency (KT) has been deployed by popular platforms (such as Whatsapp) and many designs and refinements have been proposed. However, KT in the interoperable E2EE setting has not yet been investigated. We address the challenge of distributing and trusting keys across platform boundaries and propose a Secure Key Transparency Protocol for Interoperable End-to-End Encrypted Message Systems ((P)KT-IEE). We also present a privacy preserving variant of our proposed protocol. This work is timely since the EU’s Digital Markets Act obliges E2EE messaging platforms to allow users from different services to be able to communicate with each other. Our security and performance analysis show that our protocols are secure, private, resist local surveillance, and practical (allowing for trade-offs between light-weight and privacy preservation).

Original language	English
Title of host publication	Free and Open Communications on the Internet 2024
Publisher	Privacy Enhancing Technologies Board
Pages	68–76
Number of pages	9
Edition	2
Publication status	Published - 15 Jul 2024
Event	Free and Open Communications on the Internet 2024: FOCI 2024 - Bristol, United Kingdom Duration: 15 Jul 2024 → 15 Jul 2024

Conference

Conference	Free and Open Communications on the Internet 2024
Country/Territory	United Kingdom
City	Bristol
Period	15/07/24 → 15/07/24

Keywords / Materials (for Non-textual outputs)

key transparency
interoperability
end-to-end encryption
key distribution
message service provider systems

Access to Document

GargElahiFOCI2024PKT-IEESecureKeyTransparencyProtocolsFinal published version, 573 KBLicence: Creative Commons: Attribution (CC-BY)

https://petsymposium.org/foci/2024/foci-2024-0015.phpLicence: Creative Commons: Attribution (CC-BY)

REPHRAIN: Research centre on Privacy, Harm Reduction and Adversarial Influence online
Elahi, T. (Principal Investigator), Elahi, T. (Principal Investigator) & Nissen, B. (Co-investigator)
Engineering and Physical Sciences Research Council
1/10/20 → 31/03/25
Project: Research

Cite this

@inproceedings{fd98cac2fca94d22b09b6565ccec2065,

title = "(P)KT-IEE: Secure key transparency protocols for interoperable end-to-end encrypted message systems",

abstract = "End-to-End-Encrypted (E2EE) messaging services are a key privacy enhancing technology enabling free and open speech on the Internet. They are widely deployed and very popular with large userbases. E2EE relies critically on the trustworthy distribution and storage of users{\textquoteright} public keys. To that end, Key Transparency (KT) has been deployed by popular platforms (such as Whatsapp) and many designs and refinements have been proposed. However, KT in the interoperable E2EE setting has not yet been investigated. We address the challenge of distributing and trusting keys across platform boundaries and propose a Secure Key Transparency Protocol for Interoperable End-to-End Encrypted Message Systems ((P)KT-IEE). We also present a privacy preserving variant of our proposed protocol. This work is timely since the EU{\textquoteright}s Digital Markets Act obliges E2EE messaging platforms to allow users from different services to be able to communicate with each other. Our security and performance analysis show that our protocols are secure, private, resist local surveillance, and practical (allowing for trade-offs between light-weight and privacy preservation).",

keywords = "key transparency, interoperability, end-to-end encryption, key distribution, message service provider systems",

author = "Neenu Garg and Elahi, {Mohammad Tariq}",

year = "2024",

month = jul,

day = "15",

language = "English",

pages = "68–76",

booktitle = "Free and Open Communications on the Internet 2024",

publisher = "Privacy Enhancing Technologies Board",

edition = "2",

note = "Free and Open Communications on the Internet 2024 : FOCI 2024 ; Conference date: 15-07-2024 Through 15-07-2024",

}

Garg, N & Elahi, MT 2024, (P)KT-IEE: Secure key transparency protocols for interoperable end-to-end encrypted message systems. in Free and Open Communications on the Internet 2024. 2 edn, Privacy Enhancing Technologies Board, pp. 68–76, Free and Open Communications on the Internet 2024, Bristol, United Kingdom, 15/07/24. <https://petsymposium.org/foci/2024/foci-2024-0015.php>

TY - GEN

T1 - (P)KT-IEE

T2 - Free and Open Communications on the Internet 2024

AU - Garg, Neenu

AU - Elahi, Mohammad Tariq

PY - 2024/7/15

Y1 - 2024/7/15

N2 - End-to-End-Encrypted (E2EE) messaging services are a key privacy enhancing technology enabling free and open speech on the Internet. They are widely deployed and very popular with large userbases. E2EE relies critically on the trustworthy distribution and storage of users’ public keys. To that end, Key Transparency (KT) has been deployed by popular platforms (such as Whatsapp) and many designs and refinements have been proposed. However, KT in the interoperable E2EE setting has not yet been investigated. We address the challenge of distributing and trusting keys across platform boundaries and propose a Secure Key Transparency Protocol for Interoperable End-to-End Encrypted Message Systems ((P)KT-IEE). We also present a privacy preserving variant of our proposed protocol. This work is timely since the EU’s Digital Markets Act obliges E2EE messaging platforms to allow users from different services to be able to communicate with each other. Our security and performance analysis show that our protocols are secure, private, resist local surveillance, and practical (allowing for trade-offs between light-weight and privacy preservation).

AB - End-to-End-Encrypted (E2EE) messaging services are a key privacy enhancing technology enabling free and open speech on the Internet. They are widely deployed and very popular with large userbases. E2EE relies critically on the trustworthy distribution and storage of users’ public keys. To that end, Key Transparency (KT) has been deployed by popular platforms (such as Whatsapp) and many designs and refinements have been proposed. However, KT in the interoperable E2EE setting has not yet been investigated. We address the challenge of distributing and trusting keys across platform boundaries and propose a Secure Key Transparency Protocol for Interoperable End-to-End Encrypted Message Systems ((P)KT-IEE). We also present a privacy preserving variant of our proposed protocol. This work is timely since the EU’s Digital Markets Act obliges E2EE messaging platforms to allow users from different services to be able to communicate with each other. Our security and performance analysis show that our protocols are secure, private, resist local surveillance, and practical (allowing for trade-offs between light-weight and privacy preservation).

KW - key transparency

KW - interoperability

KW - end-to-end encryption

KW - key distribution

KW - message service provider systems

M3 - Conference contribution

SP - 68

EP - 76

BT - Free and Open Communications on the Internet 2024

PB - Privacy Enhancing Technologies Board

Y2 - 15 July 2024 through 15 July 2024

ER -

(P)KT-IEE: Secure key transparency protocols for interoperable end-to-end encrypted message systems

Abstract

Conference

Keywords / Materials (for Non-textual outputs)

Access to Document

Fingerprint

Projects

REPHRAIN: Research centre on Privacy, Harm Reduction and Adversarial Influence online

Cite this