English
Related papers

Related papers: A Call to Reconsider Certification Authority Autho…

200 papers

A new certification authority authorization (CAA) resource record for the domain name system (DNS) was standardized in 2013. Motivated by the later 2017 decision to enforce mandatory CAA checking for most certificate authorities, this paper…

Cryptography and Security · Computer Science 2019-09-06 Jukka Ruohonen

Automated certificate authorities (CAs) have expanded the reach of public key infrastructure on the web and for software signing. The certificates that these CAs issue attest to proof of control of some digital identity. Some of these…

Cryptography and Security · Computer Science 2023-07-18 Zachary Newman

A Certificate Authority (CA) provides the critical authentication and security services for Public Key Infrastructure (PKI) which are used for the Internet and wired networks. In MANETs (wireless and ad hoc) there is an inability to offer a…

Networking and Internet Architecture · Computer Science 2018-12-14 Junaid Chaudhry , Kashif Saleem , Paul Haskell-Dowland , Mahdi H. Miraz

Integrity and trust on the web build on X.509 certificates. Misuse or misissuance of these certificates threaten the Web PKI security model, which led to the development of several guarding techniques. In this paper, we study the DNS/DNSSEC…

Cryptography and Security · Computer Science 2024-07-03 Pouyan Fotouhi Tehrani , Raphael Hiesgen , Teresa Lübeck , Thomas C. Schmidt , Matthias Wählisch

Certificate transparency (CT) is an elegant mechanism designed to detect when a certificate authority (CA) has issued a certificate incorrectly. Many CAs now support CT and it is being actively deployed in browsers. However, a number of…

Cryptography and Security · Computer Science 2017-08-08 Saba Eskandarian , Eran Messeri , Joseph Bonneau , Dan Boneh

Many of the benefits we derive from the Internet require trust in the authenticity of HTTPS connections. Unfortunately, the public key certification ecosystem that underwrites this trust has failed us on numerous occasions. Towards an…

Cryptography and Security · Computer Science 2018-01-04 Jan-Ole Malchow , Benjamin Güldenring , Volker Roth

Cloud-based services have become part of our day-to-day software solutions. The identity authentication process is considered to be the main gateway to these services. As such, these gates have become increasingly susceptible to aggressive…

Cryptography and Security · Computer Science 2017-11-27 Marwan Darwish , Abdelkader Ouda , Luiz Fernando Capretz

The security of TLS depends on trust in certificate authorities, and that trust stems from their ability to protect and control the use of a private signing key. The signing key is the key asset of a certificate authority (CA), and its…

Cryptography and Security · Computer Science 2017-10-11 Bargav Jayaraman , Hannah Li , David Evans

The Transport Layer Security (TLS) protocol and its public-key infrastructure (PKI) are widely used in the Internet to achieve secure communication. Validating domain ownership by trusted certification authorities (CAs) is a critical step…

Cryptography and Security · Computer Science 2020-03-31 Pawel Szalachowski

During disasters, crisis, and emergencies the public relies on online services provided by official authorities to receive timely alerts, trustworthy information, and access to relief programs. It is therefore crucial for the authorities to…

Cryptography and Security · Computer Science 2021-04-15 Pouyan Fotouhi Tehrani , Eric Osterweil , Jochen H. Schiller , Thomas C. Schmidt , Matthias Wählisch

Continuous Authentication (CA) has been proposed as a potential solution to counter complex cybersecurity attacks that exploit conventional static authentication mechanisms that authenticate users only at an ingress point. However, widely…

Cryptography and Security · Computer Science 2020-10-13 Syed W. Shah , Naeem F. Syed , Arash Shaghaghi , Adnan Anwar , Zubair Baig , Robin Doss

Named Data Networking (NDN) secures network communications by requiring all data packets to be signed when produced. This requirement necessitates efficient and usable mechanisms to handle NDN certificate issuance and revocation, making…

Cryptography and Security · Computer Science 2020-09-22 Zhiyi Zhang , Su Yong Wong , Junxiao Shi , Davide Pesavento , Alexander Afanasyev , Lixia Zhang

In guaranteeing the absence of adversarial examples in an instance's neighbourhood, certification mechanisms play an important role in demonstrating neural net robustness. In this paper, we ask if these certifications can compromise the…

Machine Learning · Computer Science 2024-06-13 Andrew C. Cullen , Shijie Liu , Paul Montague , Sarah M. Erfani , Benjamin I. P. Rubinstein

Public Key Infrastructures (PKIs) with their trusted Certificate Authorities (CAs) provide the trust backbone for the Internet: CAs sign certificates which prove the identity of servers, applications, or users. To be trusted by operating…

Cryptography and Security · Computer Science 2020-09-21 Jens Hiller , Johanna Amann , Oliver Hohlfeld

In recent cyber attacks, credential theft has emerged as one of the primary vectors of gaining entry into the system. Once attacker(s) have a foothold in the system, they use various techniques including token manipulation to elevate the…

Cryptography and Security · Computer Science 2022-11-30 Jaimandeep Singh , Chintan Patel , Naveen Kumar Chaudhary

Artificial intelligence (AI) has been advancing at a fast pace and it is now poised for deployment in a wide range of applications, such as autonomous systems, medical diagnosis and natural language processing. Early adoption of AI…

Machine Learning · Computer Science 2023-09-21 Marta Kwiatkowska , Xiyue Zhang

AI-enabled tools have become sophisticated enough to allow a small number of individuals to run disinformation campaigns of an unprecedented scale. Privacy-preserving identity attestations can drastically reduce instances of impersonation…

Cryptography and Security · Computer Science 2023-11-29 Shrey Jain , Connor Spelliscy , Samuel Vance-Law , Scott Moore

Developing and certifying safe - or so-called trustworthy - AI has become an increasingly salient issue, especially in light of upcoming regulation such as the EU AI Act. In this context, the black-box nature of machine learning models…

To achieve reliable, robust, and safe AI systems, it is vital to implement fallback strategies when AI predictions cannot be trusted. Certifiers for neural networks are a reliable way to check the robustness of these predictions. They…

Machine Learning · Computer Science 2023-10-04 Tobias Lorenz , Marta Kwiatkowska , Mario Fritz

Traditionally, publicly available repositories of certificates offer the usual response to the problem of public key distribution. After issuing a public-key certificate a certification authority (CA) - in the frame of a particular…

Cryptography and Security · Computer Science 2019-10-21 Marius Marian , Diana Berbecaru
‹ Prev 1 2 3 10 Next ›