The secure platform problem taxonomy and analysis of existing proposals to address this problem

Schläpfer, Michael; Volkamer, Melanie

doi:10.1145/2463728.2463807

Cited by 5 publications

(3 citation statements)

References 18 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Recall that Rule (1) is the only rule producing fresh constants and thereby creating Fr facts. By Equation (23), every fresh constant is produced at most once in a trace. Fresh constants can be obtained (generated) by honest agents using Rule (2).…”

Section: B Extended Model Detailsmentioning

confidence: 99%

See 1 more Smart Citation

A Complete Characterization of Secure Human-Server Communication

Basin¹,

Radomirović

Schlaepfer³

2015

2015 IEEE 28th Computer Security Foundations Symposium

View full text Add to dashboard Cite

Abstract-Establishing a secure communication channel between two parties is a nontrivial problem, especially when one or both are humans. Unlike computers, humans cannot perform strong cryptographic operations without supporting technology, yet this technology may itself be compromised. We introduce a general communication topology model to facilitate the analysis of security protocols in this setting. We use it to completely characterize all topologies that allow secure communication between a human and a remote server via a compromised computer. These topologies are relevant for a variety of applications, including online banking and Internet voting. Our characterization can serve to guide the design of novel solutions for applications and to quickly exclude proposals that cannot possibly offer secure communication.

show abstract

Section: B Extended Model Detailsmentioning

confidence: 99%

“…Most existing work focuses on particular scenarios, for instance on browserbased security protocols [12], [13], login procedures [14], solutions for online banking [27], or Internet voting [23]. A general approach to modeling and reasoning about such systems are security ceremonies [9].…”

Section: Introductionmentioning

confidence: 99%

A Complete Characterization of Secure Human-Server Communication

Basin¹,

Radomirović

Schlaepfer³

2015

2015 IEEE 28th Computer Security Foundations Symposium

View full text Add to dashboard Cite

show abstract

“…A message utilizing images, sound or video would be very effective but would have to be delivered via a supporting platform. Unfortunately there is always the possibility that the voting platform has been compromised [50], thus delivering instructional messages this way seems insecure 2 . Hence we designed messages which could easily be delivered via a secure channel (e.g.…”

Section: B Developing Behaviour-change Messagesmentioning

confidence: 99%

Voter, What Message Will Motivate You To Verify Your Vote?

Olembo¹,

Renaud²,

Bartsch³

et al. 2014

Proceedings 2014 Workshop on Usable Security

Self Cite

View full text Add to dashboard Cite

Abstract-There is increasing interest in verifiable Internet voting systems that enable voters to verify the integrity of their vote on the voting platform prior to casting it, and any interested party to verify the integrity of the election results. The ease with which a vote can be verified plays a key role. Empowering individual voters to act as interested yet objective verifiers increases the probability of fraud detection. Verifying constitutes additional effort, something humans resist unless the benefits are compelling enough. Thus, what is the best way to provide such motivation? We report on a survey, distributed to 123 respondents, in which we explore the effects of three types of motivating messages on voters' intention to verify a vote, using a smartphone app. The motivating messages were intended to increase the intention to verify a vote. Our findings have persuaded us that further research on the use of motivating messages in the context of verifiable voting is warranted.

show abstract