What is it about?
The use of unified communication; video conferencing, audio conferencing, and instant messaging has sky-rocketed during the COVID-19 pandemic. However, security and privacy considerations have often been neglected. This article provides a comprehensive survey of security and privacy in Unified Communication (UC).
Featured Image
Photo by Emiliano Cicero on Unsplash
Why is it important?
We used systematic methods based on security & privacy frameworks (STRIDE/LINDDUN) for the risk analysis of a generic UC system, controls to address these, and analysis of market leading UC systems (Zoom, Teams, WhatsApp, ...) against the identified risks and mitigations. In particular, there are significant challenges for anonymity and undetectability, as well as challenges to enhance UC features such as meeting invitations with security and privacy features.
Perspectives
The framework we have presented in this article enables users to make informed decisions on the selection of unified communication platforms, particularly with regard to their security and privacy features. Unfortunately, users and organizations increasingly prefer to consume UC public cloud services as a commodity without much regard to security and privacy. Ensuring that organizations prioritize responsible security and privacy properties over the convenient use of cloud services is a wider issue of socio-technical systems that also deserves further study.
Thomas Reisinger
De Montfort University
Read the Original
This page is a summary of: Security and Privacy in Unified Communication, ACM Computing Surveys, April 2023, ACM (Association for Computing Machinery),
DOI: 10.1145/3498335.
You can read the full text:
Contributors
The following have contributed to this page
