" I {don't} know why I check this...''-Investigating Expert Users' Strategies to Detect Email Signature Spoofing Attacks
P Mayer, D Poddebniak, K Fischer… - … Symposium on Usable …, 2022 - usenix.org
OpenPGP is one of the two major standards for end-to-end email security. Several studies
showed that serious usability issues exist with tools implementing this standard. However, a …
showed that serious usability issues exist with tools implementing this standard. However, a …
Mitigation of attacks on email end-to-end encryption
J Schwenk, M Brinkmann, D Poddebniak… - Proceedings of the …, 2020 - dl.acm.org
OpenPGP and S/MIME are two major standards for securing email communication
introduced in the early 1990s. Three recent classes of attacks exploit weak cipher modes …
introduced in the early 1990s. Three recent classes of attacks exploit weak cipher modes …
[HTML][HTML] SoK: The past decade of user deception in emails and today's email clients' susceptibility to phishing techniques
User deception in emails is still one of the biggest security risks companies and end-users
face alike. Attackers try to mislead their victims when assessing whether emails are …
face alike. Attackers try to mislead their victims when assessing whether emails are …
Office document security and privacy
OOXML and ODF are the de facto standard data formats for word processing, spreadsheets,
and presentations. Both are XML-based, feature-rich container formats dating back to the …
and presentations. Both are XML-based, feature-rich container formats dating back to the …
Practical decryption exfiltration: Breaking pdf encryption
The Portable Document Format, better known as PDF, is one of the most widely used
document formats worldwide, and in order to ensure information confidentiality, this file …
document formats worldwide, and in order to ensure information confidentiality, this file …
SoK: why Johnny can't fix PGP standardization
H Halpin - Proceedings of the 15th International Conference on …, 2020 - dl.acm.org
Pretty Good Privacy (PGP) has long been the primary IETF standard for encrypting email, but
suffers from widespread usability and security problems that have limited its adoption. As …
suffers from widespread usability and security problems that have limited its adoption. As …
[图书][B] Cybersecurity: a practical engineering approach
HMD Santos - 2022 - taylorfrancis.com
Cybersecurity: A Practical Engineering Approach introduces the implementation of a secure
cyber architecture, beginning with the identification of security risks. It then builds solutions …
cyber architecture, beginning with the identification of security risks. It then builds solutions …
Mailto: Me your secrets. on bugs and features in email end-to-end encryption
J Müller, M Brinkmann, D Poddebniak… - … IEEE Conference on …, 2020 - ieeexplore.ieee.org
OpenPGP and S/MIME are the two major standards for email end-to-end encryption. We
show practical attacks against both encryption schemes in the context of email. First, we …
show practical attacks against both encryption schemes in the context of email. First, we …
Trackers in Your Inbox: Criticizing Current Email Tracking Practices
S Kalantari, A Put, B De Decker - Annual Privacy Forum, 2021 - Springer
Email is among the cornerstones of our online lives. It has evolved from carrying text-only
messages to delivering well-designed HTML contents. The uptake of web protocols into …
messages to delivering well-designed HTML contents. The uptake of web protocols into …
Legacy Encryption Downgrade Attacks against LibrePGP and CMS
F Strenzke, J Roth - Cryptology ePrint Archive, 2024 - eprint.iacr.org
This work describes vulnerabilities in the specification of the AEAD packets as introduced in
the novel LibrePGP specification that is implemented by the widely used GnuPG application …
the novel LibrePGP specification that is implemented by the widely used GnuPG application …