CRII: SaTC: Privacy vs. Accountability--Usable Deniability and Non-Repudiation for Encrypted Messaging Systems

CRII：SaTC：隐私与责任——加密消息系统的可用否认性和不可否认性

• 批准号: 2348181
• 负责人: Joshua Reynolds
• 金额: $ 17.5万
• 依托单位: New Mexico State University
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2024
• 资助国家: 美国
• 起止时间: 2024-05-15 至 2026-04-30
• 项目状态: 未结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=2348181&HistoricalAwards=false
• 关键词: CRII; SaTC; Privacy; vs.; Accountability

End-to-end encrypted messaging apps are used by billions of people, globally. Encryption by itself, however, does not guarantee people’s privacy, accountability, and safety. Sometimes safety goals require plausible deniability: for conversations that might be compromising, it can useful to send a message and have the receiver know who sent it, but not be able to prove who the sender was to others. Sometimes accountability goals require non-repudiation: for on-the-record conversations, a sender may want to be able to prove that they, or their partner, sent a message even if the partner claims otherwise and tries to alter the conversation transcript. This project’s goal is to help people understand and make good choices about when to choose deniability and when to choose non-repudiation and develop messaging app features that make it easy to make those choices. Through this, the project will advance knowledge around how people make sense of and use cryptography, and people’s practical ability to effectively and safely communicate. The project is organized around two parallel interface design activities, one focused on interfaces for deniability, and one on interfaces for non-repudiation. For deniability, the team will develop interaction techniques that allow users to alter the content, timing, and authorship of messages in a transcript, leveraging underlying cryptographic techniques that support those edits. For non-repudiation, the team will develop interaction techniques that help people cryptographically sign messages using keys tied to their identity. Both interfaces will be tested through a series of user studies that address (1) people’s ability to use the tools, (2) their ability to understand the implications of using tools for deniability and non-repudiation, and (3) to use them in conversational contexts. The work will be carried out with a number of undergraduate and graduate students, and research interns, providing valuable and needed training for a future cybersecurity workforce.This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.

全球数十亿人使用端到端的加密消息传递应用程序。但是，加密本身并不能保证人们的隐私，问责制和安全。有时，安全目标需要合理的可否认性：对于可能遭到损害的对话，发送消息并让接收者知道谁发送了消息，但无法证明发送者是谁是其他人。有时，问责制目标需要非纠正：对于录制对话，发件人可能希望能够证明他们或他们的合作伙伴也会发送一条消息，即使合作伙伴则否则声明并试图更改对话成绩单。该项目的目标是帮助人们了解何时选择可否认性以及何时选择非替代性和开发消息传递应用程序功能，从而可以轻松做出这些选择。通过此，该项目将促进有关人们如何理解和使用加密技术的知识，以有效，安全地进行交流。该项目围绕两个并行界面设计活动进行组织，其中一项侧重于可否认性的接口，另一个集中在非固定界面上。为了否定性，团队将开发互动技术，使用户可以更改成绩单中消息的内容，时机和作者身份，从而利用支持这些编辑的基础加密技术。对于非纠正措施，团队将开发互动技术，以帮助人们使用与其身份绑定的键在密码上签名消息。这两个接口将通过一系列用户研究进行测试，以解决（1）人们使用这些工具的能力，（2）他们了解使用工具来可否认性和非纠正的含义的能力，以及（3）在对话环境中使用它们。这项工作将与许多本科生和研究生以及研究实习生一起进行，为未来的网络安全劳动力提供价值和所需的培训。该奖项反映了NSF的法定任务，并被认为是通过基金会的知识分子优点和更广泛的影响来评估来评估的支持。