[Resource Topic] 2016/925: Secure Channel Injection and Anonymous Proofs of Account Ownership

Welcome to the resource topic for 2016/925

Title:
Secure Channel Injection and Anonymous Proofs of Account Ownership

Authors: Liang Wang, Rafael Pass, abhi shelat, Thomas Ristenpart

Abstract:

We introduce secure channel injection (SCI) protocols, which allow one party to insert a private message into another party’s encrypted communications. We construct an efficient SCI protocol for communications delivered over TLS, and use it to realize anonymous proofs of account ownership for SMTP servers. This allows alice@mail.com to prove ownership of some email address @mail.com, without revealing alice'' to the verifier. We show experimentally that our system works with standard email server implementations as well as Gmail. We go on to extend our basic SCI protocol to realize a blind’’ certificate authority: the account holder can obtain a valid X.509 certificate binding alice@mail.com to her public key, if it can prove ownership of some email address @mail.com. The authority never learns which email account is used.

ePrint: https://eprint.iacr.org/2016/925

See all topics related to this paper.

Feel free to post resources that are related to this paper below.

Example resources include: implementations, explanation materials, talks, slides, links to previous discussions on other websites.

For more information, see the rules for Resource Topics .