Understanding the limitations of S/MIME digital signatures for e-mails: a GUI based approach

Levi, Albert and Güder, Can Berk (2009) Understanding the limitations of S/MIME digital signatures for e-mails: a GUI based approach. Computers and Security, 28 (3-4). pp. 105-120. ISSN 0167-4048

This is the latest version of this item.

[thumbnail of Printed version] PDF (Printed version)
cose_340-as-appeared-onScienceDirect.pdf
Restricted to Registered users only

Download (1MB) | Request a copy
[thumbnail of cose340-author-offprint.pdf] PDF
cose340-author-offprint.pdf

Download (1MB)

Abstract

S/MIME (Secure/Multipurpose Internet Mail Extensions) is a well-known standard for secure e-mail exchange. S/MIME builds its identity management on e-mail addresses, rather than real names. This fact may sometimes cause sending a signed e-mail with a bogus name on it. Moreover, header information of a signed e-mail message, such as subject and name, can be altered without affecting the verifiability of the signature. This paper spots the details of such problems of S/MIME and discusses some solutions from both developer and user points of view. Moreover, GUI considerations about these problems are also analyzed in this paper. An ideal GUI is modeled and developed.
Item Type: Article
Uncontrolled Keywords: E-mail security; Digital signatures; S/MIME; Digital certificates; Security GUI
Divisions: Faculty of Engineering and Natural Sciences > Academic programs > Computer Science & Eng.
Depositing User: Albert Levi
Date Deposited: 25 Nov 2009 11:21
Last Modified: 24 Jul 2019 09:36
URI: https://research.sabanciuniv.edu/id/eprint/12932

Available Versions of this Item

Actions (login required)

View Item
View Item