Published on December 12, 2007
Security of Instant Messaging: Security of Instant Messaging Hui Gu Introduction: Introduction What is Instant Message (IM) Security Issues associated with IM Technical aspect IM worms Message encryption Non-technical aspect Individual Misrepresentation IM Worms: IM Worms Ways to Replication Malicious file transfer Malicious URL in a text Message Exploitation of vulnerabilities in OS or other software application Technology to prevent IM worms Shutdown server temporarily Message filtering Disable the most-connected users Message throttling Message Encryption: Message Encryption Why we need message encryption and the draw backs Existing method Long term public key Off-The-Record Message Long term public key and temporary session key Non-technical Aspect: Non-technical Aspect Individual Misrepresentation John124 can convince Jack that he is John123. An IM account represents a company while the owner of the IM account is no more employed by the company. Conclusion and future work: Conclusion and future work New Proposal Message throttling on URL or transferring files. Completely Automated Public Turing test to tell Computers and Humans Apart (CAPTCHA) Do not rely on computer to do every thing for you. Table 1: Average activity of each type of communication over a 15 minutes interval.
... hgu005 ABSTRACTION paperstudies securityissues ... suggestsome effective approaches risks.GENERAL TERMS Security KEYWORDS Instant message, IM ...