English
Related papers

Related papers: SoK: SCT Auditing in Certificate Transparency

200 papers

Certificate transparency (CT) is an elegant mechanism designed to detect when a certificate authority (CA) has issued a certificate incorrectly. Many CAs now support CT and it is being actively deployed in browsers. However, a number of…

Cryptography and Security · Computer Science 2017-08-08 Saba Eskandarian , Eran Messeri , Joseph Bonneau , Dan Boneh

Despite increasing advancements in today's information exchange infrastructure, the preservation of user data and privacy still remains a problem. Both insecure baselines and secure solutions leak user data. For example, Certificate…

Cryptography and Security · Computer Science 2019-05-24 Vy-An Phan

Internet security and privacy stand on the trustworthiness of public certificates signed by Certificate Authorities (CAs). However, software products do not trust the same CAs and therefore maintain different root stores, each typically…

Networking and Internet Architecture · Computer Science 2021-02-01 Nikita Korzhitskii , Niklas Carlsson

In this paper, we analyze the evolution of Certificate Transparency (CT) over time and explore the implications of exposing certificate DNS names from the perspective of security and privacy. We find that certificates in CT logs have seen…

Networking and Internet Architecture · Computer Science 2018-11-12 Quirin Scheitle , Oliver Gasser , Theodor Nolte , Johanna Amann , Lexi Brent , Georg Carle , Ralph Holz , Thomas C. Schmidt , Matthias Wählisch

The modern Internet is highly dependent on trust communicated via certificates. However, in some cases, certificates become untrusted, and it is necessary to revoke them. In practice, the problem of secure revocation is still open.…

Cryptography and Security · Computer Science 2022-03-07 Nikita Korzhitskii , Matus Nemec , Niklas Carlsson

The level of trust accorded to certification authorities has been decreasing over the last few years as several cases of misbehavior and compromise have been observed. Log-based approaches, such as Certificate Transparency, ensure that…

Cryptography and Security · Computer Science 2016-01-06 Laurent Chuat , Pawel Szalachowski , Adrian Perrig , Ben Laurie , Eran Messeri

Trust in publicly verifiable Certificate Transparency (CT) logs is reduced through cryptography, gossip, auditing, and monitoring. The role of a monitor is to observe each and every log entry, looking for suspicious certificates that…

Cryptography and Security · Computer Science 2018-10-30 Rasmus Dahlberg , Tobias Pulls

This paper systematizes log based Transparency Enhancing Technologies. Based on work on transparency from multiple disciplines we outline the purpose, usefulness, and pitfalls of transparency. We describe the mechanisms that allow log based…

Cryptography and Security · Computer Science 2023-09-19 Alexander Hicks

Browsers can detect malicious websites that are provisioned with forged or fake TLS/SSL certificates. However, they are not so good at detecting malicious websites if they are provisioned with mistakenly issued certificates or certificates…

Cryptography and Security · Computer Science 2017-07-21 Abhishek Singh , Binanda Sengupta , Sushmita Ruj

The security of public key validation protocols for web-based applications has recently attracted attention because of weaknesses in the certificate authority model, and consequent attacks. Recent proposals using public logs have succeeded…

Cryptography and Security · Computer Science 2017-03-17 Jiangshan Yu , Vincent Cheval , Mark Ryan

The Transport Layer Security (TLS) protocol and its public-key infrastructure (PKI) are widely used in the Internet to achieve secure communication. Validating domain ownership by trusted certification authorities (CAs) is a critical step…

Cryptography and Security · Computer Science 2020-03-31 Pawel Szalachowski

Confidential computing in the public cloud intends to safeguard workload privacy while outsourcing infrastructure management to a cloud provider. This is achieved by executing customer workloads within so called Trusted Execution…

The security of TLS depends on trust in certificate authorities, and that trust stems from their ability to protect and control the use of a private signing key. The signing key is the key asset of a certificate authority (CA), and its…

Cryptography and Security · Computer Science 2017-10-11 Bargav Jayaraman , Hannah Li , David Evans

Many of the benefits we derive from the Internet require trust in the authenticity of HTTPS connections. Unfortunately, the public key certification ecosystem that underwrites this trust has failed us on numerous occasions. Towards an…

Cryptography and Security · Computer Science 2018-01-04 Jan-Ole Malchow , Benjamin Güldenring , Volker Roth

In conventional PKI, CAs are assumed to be fully trusted. However, in practice, CAs' absolute responsibility for providing trustworthiness caused major security and privacy issues. To prevent such issues, Google introduced the concept of…

Cryptography and Security · Computer Science 2018-10-02 Murat Yasin Kubilay , Mehmet Sabir Kiraz , Haci Ali Mantar

Social media platforms curate access to information and opportunities, and so play a critical role in shaping public discourse today. The opaque nature of the algorithms these platforms use to curate content raises societal questions. Prior…

Computers and Society · Computer Science 2023-03-08 Basileal Imana , Aleksandra Korolova , John Heidemann

Enabling supply chain transparency (SCT) is essential for regulatory compliance and meeting sustainability standards. Multi-tier SCT plays a pivotal role in identifying and mitigating an organization's operational, environmental, and social…

Computers and Society · Computer Science 2024-09-13 Lukas Hueller , Tim Kuffner , Matthias Schneider , Leo Schuhmann , Virginie Cauderay , Tolga Buz , Vincent Beermann , Falk Uebernickel

Phishing is a prevalent cyberattack that uses look-alike websites to deceive users into revealing sensitive information. Numerous efforts have been made by the Internet community and security organizations to detect, prevent, or train users…

Cryptography and Security · Computer Science 2025-07-15 Gaurav Varshney , Akanksha Raj , Divya Sangwan , Sharif Abuadbba , Rina Mishra , Yansong Gao

The goal of this paper is to propose a blockchain-based platform to enhance transparency and traceability of cybersecurity certification information motivated by the recently adopted EU Cybersecurity Act. The proposed platform is generic…

Cryptography and Security · Computer Science 2019-09-17 Ricardo Neisse , José L. Hernández-Ramos , Sara N. Matheu , Gianmarco Baldini , Antonio Skarmeta

Under Know Your Customer (KYC) regulations, financial institutions are required to verify the identity and assess the trustworthiness of any new client during on-boarding, and maintain up-to-date records for risk management. These processes…

Cryptography and Security · Computer Science 2020-01-07 Constantin Cătălin Drăgan , Mark Manulis
‹ Prev 1 2 3 10 Next ›