CoverDrop: Blowing the Whistle Through A News App-Reference-Cited by-同舟云学术

CoverDrop: Blowing the Whistle Through A News App

Published:2022-03-03 Issue:2 Volume:2022 Page:47-67
ISSN:2299-0984
Container-title:Proceedings on Privacy Enhancing Technologies
language:en
Short-container-title:

Author:

Ahmed-Rengers Mansoor¹,Vasile Diana A.²,Hugenroth Daniel²,Beresford Alastair R.²,Anderson Ross²

Affiliation:

1. OpenOrigins Limited and University of Cambridge

2. Department of Computer Science and Technology , University of Cambridge

Abstract

Abstract Whistleblowing is hazardous in a world of pervasive surveillance, yet many leading newspapers expect sources to contact them with methods that are either insecure or barely usable. In an attempt to do better, we conducted two workshops with British news organisations and surveyed whistleblowing options and guidelines at major media outlets. We concluded that the soft spot is a system for initial contact and trust establishment between sources and reporters. CoverDrop is a two-way, secure system to do this. We support secure messaging within a news app, so that all its other users provide cover traffic, which we channel through a threshold mix instantiated in a Trusted Execution Environment within the news organisation. CoverDrop is designed to resist a powerful global adversary with the ability to issue warrants against infrastructure providers, yet it can easily be integrated into existing infrastructure. We present the results from our workshops, describe CoverDrop’s design and demonstrate its security and performance.

Publisher

Privacy Enhancing Technologies Symposium Advisory Board

Subject

General Medicine

Link

https://www.sciendo.com/pdf/10.2478/popets-2022-0035

Reference52 articles.

1. [1] Signal Private Messenger - Apps on Google Play, 2019. https://play.google.com/store/apps/details?id=org.thoughtcrime.securesms.

2. [2] WhatsApp Messenger - Apps on Google Play, 2019. https://play.google.com/store/apps/details?id=com.whatsapp&hl=en_GB.

3. [3] Mansoor Ahmed-Rengers, Ilia Shumailov, and Ross Anderson. Snitches Get Stitches: On The Difficulty Of Whistleblowing. In Proceedings of the 27th International Workshop on Security Protocols, 2019.10.1007/978-3-030-57043-9_27

4. [4] ArsTechnica. Have a confidential news tip for Ars Technica?, 2019. https://arstechnica.com/news-tips/.

5. [5] Ferdinand Brasser, Urs Müller, Alexandra Dmitrienko, Kari Kostiainen, Srdjan Capkun, and Ahmad-Reza Sadeghi. Software Grand Exposure: SGX Cache Attacks Are Practical. arXiv e-prints, page arXiv:1702.07521, February 2017.

Cited by 2 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Metadata Privacy Beyond Tunneling for Instant Messaging;2024 IEEE 9th European Symposium on Security and Privacy (EuroS&P);2024-07-08

2. Choosing Your Friends: Shaping Ethical Use of Anonymity Networks;Lecture Notes in Computer Science;2023