liu.seSearch for publications in DiVA
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • oxford
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Longitudinal characterization of X.509 revocation statuses: A framework for monitoring newly issued certificates from the most popular Certificate Transparency logs
Linköping University, Department of Computer and Information Science.
Linköping University, Department of Computer and Information Science.
2021 (English)Independent thesis Basic level (degree of Bachelor), 10 credits / 15 HE creditsStudent thesisAlternative title
Longitudinell karaktärisering av certifikatåterkallning (Swedish)
Abstract [en]

The X.509 landscape is one of the cornerstones of the internet today. It is used to establish trust between entities online. Revocations of X.509 certificates are a vital part of the infrastructure to ensure that communicating parties can, in fact, be trusted. Today, these revocations are handled by Certificate Authorities who provide either an OCSP response or a CRL with the revocation status for their certificates.

A framework was developed, written in Go, to enable longitudinal characterization of X.509 revocation statuses. We show that using the framework, it is possible to conduct a large scale analysis of X.509 certificates during an extended time. Using the data collected, we present preliminary analysis results and discuss the implications of the findings.

We conclude that CAs, in general, behave similarly, with a few exceptions. Furthermore, we believe that large scale longitudinal analysis of revocation statuses provides a basis to hold CAs accountable and increase transparency in the X.509 landscape.

Place, publisher, year, edition, pages
2021. , p. 24
Keywords [en]
pki, tls, ssl, x.509, security, certificates, https, revocation, certificate transparency
National Category
Computer and Information Sciences
Identifiers
URN: urn:nbn:se:liu:diva-178856ISRN: LIU-IDA/LITH-EX-G--21/073—SEOAI: oai:DiVA.org:liu-178856DiVA, id: diva2:1589770
Subject / course
Information Technology
Presentation
2021-06-04, Distans, 12:30 (Swedish)
Supervisors
Examiners
Available from: 2021-09-01 Created: 2021-08-31 Last updated: 2021-09-01Bibliographically approved

Open Access in DiVA

fulltext(351 kB)113 downloads
File information
File name FULLTEXT01.pdfFile size 351 kBChecksum SHA-512
4be7fcacca3676ee756ea9fa78cb1652dd06a7081d7f9065b85958f52d2acf9669f5d65399a73dd6b61e364168f3266863d7ecd86c73c776df4bc24ac1493964
Type fulltextMimetype application/pdf

By organisation
Department of Computer and Information Science
Computer and Information Sciences

Search outside of DiVA

GoogleGoogle Scholar
Total: 113 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

urn-nbn

Altmetric score

urn-nbn
Total: 523 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • oxford
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf