English
Related papers

Related papers: Private Queries on Public Certificate Transparency…

200 papers

Certificate transparency (CT) is an elegant mechanism designed to detect when a certificate authority (CA) has issued a certificate incorrectly. Many CAs now support CT and it is being actively deployed in browsers. However, a number of…

Cryptography and Security · Computer Science 2017-08-08 Saba Eskandarian , Eran Messeri , Joseph Bonneau , Dan Boneh

The Web public key infrastructure is essential to providing secure communication on the Internet today, and certificate authorities play a crucial role in this ecosystem by issuing certificates. These authorities may misissue certificates…

Cryptography and Security · Computer Science 2022-03-04 Sarah Meiklejohn , Joe DeBlasio , Devon O'Brien , Chris Thompson , Kevin Yeo , Emily Stark

In this paper, we analyze the evolution of Certificate Transparency (CT) over time and explore the implications of exposing certificate DNS names from the perspective of security and privacy. We find that certificates in CT logs have seen…

Networking and Internet Architecture · Computer Science 2018-11-12 Quirin Scheitle , Oliver Gasser , Theodor Nolte , Johanna Amann , Lexi Brent , Georg Carle , Ralph Holz , Thomas C. Schmidt , Matthias Wählisch

Internet security and privacy stand on the trustworthiness of public certificates signed by Certificate Authorities (CAs). However, software products do not trust the same CAs and therefore maintain different root stores, each typically…

Networking and Internet Architecture · Computer Science 2021-02-01 Nikita Korzhitskii , Niklas Carlsson

A growing framework of legal and ethical requirements limit scientific and commercial evalua-tion of personal data. Typically, pseudonymization, encryption, or methods of distributed com-puting try to protect individual privacy. However,…

Cryptography and Security · Computer Science 2018-11-21 Nikolaus von Bomhard , Bernd Ahlborn , Catherine Mason , Ulrich Mansmann

Confidential Computing enhances privacy of data in-use through hardware-based Trusted Execution Environments (TEEs) that use attestation to verify their integrity, authenticity, and certain runtime properties, along with those of the…

Cryptography and Security · Computer Science 2024-12-09 Ceren Kocaoğullar , Tina Marjanov , Ivan Petrov , Ben Laurie , Al Cutter , Christoph Kern , Alice Hutchings , Alastair R. Beresford

Blockchain technology enforces the security, robustness, and traceability of operations of Process-Aware Information Systems (PAISs). In particular, transparency ensures that all data is publicly available, fostering trust among…

Cryptography and Security · Computer Science 2026-04-23 Michele Kryston , Edoardo Marangone , Alessandro Marcelletti , Claudio Di Ciccio

Real-time, online-editing web apps provide free and convenient services for collaboratively editing, sharing and storing files. The benefits of these web applications do not come for free: not only do service providers have full access to…

Cryptography and Security · Computer Science 2019-11-19 Yihao Hu , Ari Trachtenberg , Prakash Ishwar

Browsers can detect malicious websites that are provisioned with forged or fake TLS/SSL certificates. However, they are not so good at detecting malicious websites if they are provisioned with mistakenly issued certificates or certificates…

Cryptography and Security · Computer Science 2017-07-21 Abhishek Singh , Binanda Sengupta , Sushmita Ruj

Phishing is a prevalent cyberattack that uses look-alike websites to deceive users into revealing sensitive information. Numerous efforts have been made by the Internet community and security organizations to detect, prevent, or train users…

Cryptography and Security · Computer Science 2025-07-15 Gaurav Varshney , Akanksha Raj , Divya Sangwan , Sharif Abuadbba , Rina Mishra , Yansong Gao

Under Know Your Customer (KYC) regulations, financial institutions are required to verify the identity and assess the trustworthiness of any new client during on-boarding, and maintain up-to-date records for risk management. These processes…

Cryptography and Security · Computer Science 2020-01-07 Constantin Cătălin Drăgan , Mark Manulis

Threat information sharing is considered as one of the proactive defensive approaches for enhancing the overall security of trusted partners. Trusted partner organizations can provide access to past and current cybersecurity threats for…

Cryptography and Security · Computer Science 2021-12-21 Hisham Ali , Pavlos Papadopoulos , Jawad Ahmad , Nikolaos Pitropakis , Zakwan Jaroucheh , William J. Buchanan

Security has become a significant concern with the increased popularity of cloud storage services. It comes with the vulnerability of being accessed by third parties. Security is one of the major hurdles in the cloud server for the user…

Cryptography and Security · Computer Science 2023-06-07 Mazharul Islam

The increasing adoption of Cloud storage poses a number of privacy issues. Users wish to preserve full control over their sensitive data and cannot accept that it to be accessible by the remote storage provider. Previous research was made…

Cryptography and Security · Computer Science 2015-03-30 Ernesto Damiani , Francesco Pagano , Davide Pagano

Implicit authentication consists of a server authenticating a user based on the user's usage profile, instead of/in addition to relying on something the user explicitly knows (passwords, private keys, etc.). While implicit authentication…

Cryptography and Security · Computer Science 2015-03-03 Josep Domingo-Ferrer , Qianhong Wu , Alberto Blanco-Justicia

The black-box service model enables ML service providers to serve clients while keeping their intellectual property and client data confidential. Confidentiality is critical for delivering ML services legally and responsibly, but makes it…

Computers and Society · Computer Science 2025-10-28 Olive Franzese , Ali Shahin Shamsabadi , Carter Luck , Hamed Haddadi

Many of the benefits we derive from the Internet require trust in the authenticity of HTTPS connections. Unfortunately, the public key certification ecosystem that underwrites this trust has failed us on numerous occasions. Towards an…

Cryptography and Security · Computer Science 2018-01-04 Jan-Ole Malchow , Benjamin Güldenring , Volker Roth

The sharing of public key information is central to the digital credential security model, but the existing Web PKI with its opaque Certification Authorities and synthetic attestations serves a very different purpose. We propose a new…

Cryptography and Security · Computer Science 2024-01-08 Tim Hobson , Lydia France , Sam Greenbury , Luke Hare , Pamela Wochner

In the digital era, users share their personal data with service providers to obtain some utility, e.g., access to high-quality services. Yet, the induced information flows raise privacy and integrity concerns. Consequently, cautious users…

Cryptography and Security · Computer Science 2021-01-13 Sylvain Chatel , Apostolos Pyrgelis , Juan R. Troncoso-Pastoriza , Jean-Pierre Hubaux

Cooperative information systems typically involve various entities in a collaborative process within a distributed environment. Blockchain technology offers a mechanism for automating such processes, even when only partial trust exists…

Cryptography and Security · Computer Science 2024-05-08 Edoardo Marangone , Michele Spina , Claudio Di Ciccio , Ingo Weber
‹ Prev 1 2 3 10 Next ›