English
Related papers

Related papers: Revocation Statuses on the Internet

200 papers

X.509 certificate parsing and validation is a critical task which has shown consistent lack of effectiveness, with practical attacks being reported with a steady rate during the last 10 years. In this work we analyze the X.509 standard and…

Cryptography and Security · Computer Science 2018-12-13 Alessandro Barenghi , Nicholas Mainardi , Gerardo Pelosi

The Web public key infrastructure is essential to providing secure communication on the Internet today, and certificate authorities play a crucial role in this ecosystem by issuing certificates. These authorities may misissue certificates…

Cryptography and Security · Computer Science 2022-03-04 Sarah Meiklejohn , Joe DeBlasio , Devon O'Brien , Chris Thompson , Kevin Yeo , Emily Stark

The Resource Public Key Infrastructure (RPKI) secures the Internet's routing system by defining a complex trust and validation framework for certificates, Route Origin Authorizations (ROAs), manifests, and Certificate Revocation Lists…

Cryptography and Security · Computer Science 2026-05-27 Oliver Jacobsen , Tobias Kirsch , Haya Schulmann , Niklas Vogel , Michael Waidner

Let's Encrypt is a new entrant in the Certificate Authority ecosystem that offers free and automated certificate signing. It is visionary in its commitment to Certificate Transparency. In this paper, we shed light on the adoption patterns…

Cryptography and Security · Computer Science 2016-11-03 Antonis Manousis , Roy Ragsdale , Ben Draffin , Adwiteeya Agrawal , Vyas Sekar

Self-Sovereign Identity (SSI) aspires to create a standardised identity layer for the Internet by placing citizens at the centre of their data, thereby weakening the grip of big tech on current digital identities. However, as millions of…

Distributed, Parallel, and Cluster Computing · Computer Science 2022-08-15 Rowdy Chotkan , Jérémie Decouchant , Johan Pouwelse

The use of Content Delivery Networks (CDNs) has significantly increased over the past decade, with approximately 55 million websites currently relying on CDN services. Emerging solutions, such as Delegated Credentials (RFC 9345), lack…

Networking and Internet Architecture · Computer Science 2025-10-14 Ethan Thompson , Ali Sadeghi Jahromi , AbdelRahman Abdou

X.509 certificates play a crucial role in establishing secure communication over the internet by enabling authentication and data integrity. Equipped with a rich feature set, the X.509 standard is defined by multiple, comprehensive ISO/IEC…

Cryptography and Security · Computer Science 2024-05-30 Stefan Tatschner , Sebastian N. Peters , Michael P. Heinl , Tobias Specht , Thomas Newe

Digital Identities are playing an essential role in our digital lives. Today, used Digital Identities are based on central architectures. Central Digital Identity providers control and know our data and, thereby, our Identity. Self…

Cryptography and Security · Computer Science 2022-11-24 Andreas Freitag

The Transport Layer Security (TLS) protocol and its public-key infrastructure (PKI) are widely used in the Internet to achieve secure communication. Validating domain ownership by trusted certification authorities (CAs) is a critical step…

Cryptography and Security · Computer Science 2020-03-31 Pawel Szalachowski

Certificate transparency (CT) is an elegant mechanism designed to detect when a certificate authority (CA) has issued a certificate incorrectly. Many CAs now support CT and it is being actively deployed in browsers. However, a number of…

Cryptography and Security · Computer Science 2017-08-08 Saba Eskandarian , Eran Messeri , Joseph Bonneau , Dan Boneh

Modern identity and trust systems collapse in the environments where they are needed most: disaster zones, disconnected or damaged networks, and adversarial conditions such as censorship or infrastructure interference. These systems depend…

Cryptography and Security · Computer Science 2026-01-06 Jay Kuri

Anonymity revocation is an essential component of credential issuing systems since unconditional anonymity is incompatible with pursuing and sanctioning credential misuse. However, current anonymity revocation approaches have shortcomings…

Cryptography and Security · Computer Science 2019-08-13 Rujia Li , David Galindo , Qi Wang

We define a problem of certifying computation integrity performed by some remote party we do not necessarily trust. We present a multi-party interactive protocol called SafeComp that solves this problem under specified constraints.…

Cryptography and Security · Computer Science 2020-05-25 Evgeny Shishkin , Evgeny Kislitsyn

The paper describes two important design flaws in Online Certificate Status Protocol (OCSP), a protocol widely used in PKI environments for managing digital certificates' credibility in real time. The flaws significantly reduce the security…

Cryptography and Security · Computer Science 2016-09-13 Ken Ivanov

Inspired by the great success of recurrent neural networks (RNNs) in sequential modeling, we introduce a novel RNN system to improve the performance of online signature verification. The training objective is to directly minimize…

Computer Vision and Pattern Recognition · Computer Science 2017-05-22 Songxuan Lai , Lianwen Jin , Weixin Yang

In this paper, we analyze the evolution of Certificate Transparency (CT) over time and explore the implications of exposing certificate DNS names from the perspective of security and privacy. We find that certificates in CT logs have seen…

Networking and Internet Architecture · Computer Science 2018-11-12 Quirin Scheitle , Oliver Gasser , Theodor Nolte , Johanna Amann , Lexi Brent , Georg Carle , Ralph Holz , Thomas C. Schmidt , Matthias Wählisch

Public key infrastructures are essential for Internet security, ensuring robust certificate management and revocation mechanisms. The transition from centralized to decentralized systems presents challenges such as trust distribution and…

Cryptography and Security · Computer Science 2025-03-05 Patrick Herbke , Thomas Cory , Mauro Migliardi

The majority of electronic communication today happens either via email or chat. Thanks to the use of standardised protocols electronic mail (SMTP, IMAP, POP3) and instant chat (XMPP, IRC) servers can be deployed in a decentralised but…

Cryptography and Security · Computer Science 2016-01-26 Ralph Holz , Johanna Amann , Olivier Mehani , Matthias Wachs , Mohamed Ali Kaafar

Cyber assurance, which is the ability to operate under the onslaught of cyber attacks and other unexpected events, is essential for organizations facing inundating security threats on a daily basis. Organizations usually employ multiple…

Cryptography and Security · Computer Science 2022-07-26 Nan Sun , Chang-Tsun Li , Hin Chan , Md Zahidul Islam , Md Rafiqul Islam , Warren Armstrong

Context: The retraction of research papers, for whatever reason, is a growing phenomenon. However, although retracted paper information is publicly available via publishers, it is somewhat distributed and inconsistent. Objective: The aim is…

Digital Libraries · Computer Science 2023-07-19 Martin Shepperd , Leila Yousefi