liu.seSearch for publications in DiVA
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • oxford
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
A first look at the CT landscape: Certificate transparency logs in practice
Linköping University.
Linköping University.
University of Calgary, Calgary, Canada.
Linköping University, Department of Computer and Information Science, Database and information techniques. Linköping University, Faculty of Science & Engineering.
2017 (English)In: Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) / [ed] Uhlig S.,Amann J.,Kaafar M.A., 2017, Vol. 10176, p. 87-99Conference paper, Published paper (Refereed)
Abstract [en]

Many of today’s web-based services rely heavily on secure end-to-end connections. The “trust” that these services require builds upon TLS/SSL. Unfortunately, TLS/SSL is highly vulnerable to compromised Certificate Authorities (CAs) and the certificates they generate. Certificate Transparency (CT) provides a way to monitor and audit certificates and certificate chains, to help improve the overall network security. Using an open standard, anybody can setup CT logs, monitors, and auditors. CT is already used by Google’s Chrome browser for validation of Extended Validation (EV) certificates, Mozilla is drafting their own CT policies to be enforced, and public CT logs have proven valuable in identifying rogue certificates. In this paper we present the first large-scale characterization of the CT landscape. Our characterization uses both active and passive measurements and highlights similarities and differences in public CT logs, their usage, and the certificates they include. We also provide insights into how the certificates in these logs relate to the certificates and keys observed in regular web traffic.

Place, publisher, year, edition, pages
2017. Vol. 10176, p. 87-99
Series
Lecture Notes in Computer Science, ISSN 0302-9743, E-ISSN 1611-3349 ; 10176
National Category
Computer and Information Sciences
Identifiers
URN: urn:nbn:se:liu:diva-140910DOI: 10.1007/978-3-319-54328-4_7ISI: 000418290300007Scopus ID: 2-s2.0-85015924657ISBN: 978-3-319-54327-7 (print)ISBN: 978-3-319-54328-4 (electronic)OAI: oai:DiVA.org:liu-140910DiVA, id: diva2:1141576
Conference
18th International Conference on Passive and Active Measurement, PAM 2017; Sydney; Australia
Note

Funding agencies:The authors are thankful to our shepherd Ralph Holz and the anonymous reviewers for their feedback. This work was funded in part by the Swedish Research Council (VR) and the Natural Sciences and Engineering Research Council (NSERC) of Canada.

Available from: 2017-09-15 Created: 2017-09-15 Last updated: 2018-03-27

Open Access in DiVA

fulltext(317 kB)105 downloads
File information
File name FULLTEXT01.pdfFile size 317 kBChecksum SHA-512
280d79b7f7404229eadfd16f8e0f04d2ae6340d290f0aa968440af78f4e37903f3789b2129e1246489ef28d539d90b0d624e665bb9205d4710d2afa61801f281
Type fulltextMimetype application/pdf

Other links

Publisher's full textScopus

Search in DiVA

By author/editor
Carlsson, Niklas
By organisation
Linköping UniversityDatabase and information techniquesFaculty of Science & Engineering
Computer and Information Sciences

Search outside of DiVA

GoogleGoogle Scholar
Total: 105 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

doi
isbn
urn-nbn

Altmetric score

doi
isbn
urn-nbn
Total: 339 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • oxford
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf