BYU

Abstract by Jordan Jenkins

Personal Infomation


Presenter's Name

Jordan Jenkins

Degree Level

Undergraduate

Abstract Infomation


Department

Computer Science

Faculty Advisor

Kent Seamons

Title

Using Key Transparency to Detect Fake Key Attacks in Signal

Abstract

Secure messaging apps like WhatsApp and Signal rely on a centralized key server. Users trust the key server to store and exchange their keys so they can message each other. However, a malicious key server could perform fake key attacks. Apps provide Alice and Bob an authentication ceremony for manually verifying exchanged keys, but prior research shows that users don’t understand the need for the ceremony and find it difficult to perform. We propose using key transparency to detect fake key attacks.