UCL Discovery
UCL home » Library Services » Electronic resources » UCL Discovery

The Security Blanket of the Chat World: An Analytic Evaluation and a User Study of Telegram

Abu-Salma, R; Krol, K; Parkin, S; Koh, V; Kwan, K; Mahboob, J; Traboulsi, Z; (2017) The Security Blanket of the Chat World: An Analytic Evaluation and a User Study of Telegram. In: Proceedings of the EuroUSEC '17. Internet Society: Reston, VA, USA. Green open access

[thumbnail of Abu-Salma et al. - 2017 - The Security Blanket of the Chat World An Analyti.pdf]
Preview
 Text
Abu-Salma et al. - 2017 - The Security Blanket of the Chat World An Analyti.pdf - Published Version
Download (1MB) | Preview

Abstract

The computer security community has advocated widespread adoption of secure communication tools to protect personal privacy. Several popular communication tools have adopted end-to-end encryption (e.g., WhatsApp, iMessage), or promoted security features as selling points (e.g., Telegram, Signal). However, previous studies have shown that users may not understand the security features of the tools they are using, and may not be using them correctly. In this paper, we present a study of Telegram using two complementary methods: (1) a labbased user study (11 novices and 11 Telegram users), and (2) a hybrid analytical approach combining cognitive walk-through and heuristic evaluation to analyse Telegram’s user interface. Participants who use Telegram feel secure because they feel they are using a secure tool, but in reality Telegram offers limited security benefits to most of its users. Most participants develop a habit of using the less secure default chat mode at all times. We also uncover several user interface design issues that impact security, including technical jargon, inconsistent use of terminology, and making some security features clear and others not. For instance, use of the end-to-end-encrypted Secret Chat mode requires both the sender and recipient be online at the same time, and Secret Chat does not support group conversations.

Type: Proceedings paper
Title: The Security Blanket of the Chat World: An Analytic Evaluation and a User Study of Telegram
Event: EuroUSEC '17
Location: Paris, France
Dates: 29 April 2017 - 29 June 2017
ISBN: 1-891562-48-7
Open access status: An open access version is available from UCL Discovery
DOI: 10.14722/eurousec.2017.23006
Publisher version: http://dx.doi.org/10.14722/eurousec.2017.23006
Language: English
Additional information: This article is published under Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported License https://creativecommons.org/licenses/by-nc-sa/3.0/deed.en_US
UCL classification: UCL
UCL > Provost and Vice Provost Offices
UCL > Provost and Vice Provost Offices > UCL BEAMS
UCL > Provost and Vice Provost Offices > UCL BEAMS > Faculty of Engineering Science
UCL > Provost and Vice Provost Offices > UCL BEAMS > Faculty of Engineering Science > Dept of Computer Science
URI: https://discovery.ucl.ac.uk/id/eprint/1560501
Downloads since deposit
3,021Downloads
Download activity - last month
Download activity - last 12 months
Downloads by country - last 12 months

Archive Staff Only

View Item View Item