论文信息 - Opportunistic Encryption Everywhere

Opportunistic Encryption Everywhere

Many of the core Internet protocols were designed for a less hostile network than the average packet finds itself in today. Many hosts are connecting over shared-key or open wireless networks where eavesdropping is trivial. On a larger scale, ISPs are experimenting with institutional sniffing where the clickstreams of the majority of users are observed and sold for their marketing value. Like the shift away from RSH and open mail relays, it’s our belief that all traffic should now be encrypted. As a practical matter this means opportunistic encryption, with all its complex trade-offs. In this paper, we explore these compromises and the design space of such a goal.

A. Langley

[1] Hugo Krawczyk,et al. UMAC: Fast and Secure Message Authentication , 1999, CRYPTO.

[2] Paul E. Hoffman,et al. SMTP Service Extension for Secure SMTP over Transport Layer Security , 2002, RFC.

[3] Hal Berghel,et al. Wireless infidelity II: airjacking , 2004, CACM.

[4] Daniel J. Bernstein,et al. Curve25519: New Diffie-Hellman Speed Records , 2006, Public Key Cryptography.

[5] S. Schoen. Packet Forgery By ISPs : A Report On The Comcast Affair , 2007 .

[6] H. Edwards. A normal form for elliptic curves , 2007 .

[7] Peter Schwabe,et al. New AES Software Speed Records , 2008, INDOCRYPT.