liu.seSearch for publications in DiVA
Change search
ReferencesLink to record
Permanent link

Direct link
Certificate Transparency in Theory and Practice
Linköping University, Department of Computer and Information Science, Database and information techniques.
2016 (English)Independent thesis Advanced level (degree of Master (Two Years)), 20 credits / 30 HE creditsStudent thesis
Abstract [en]

Certificate Transparency provides auditability to the widely used X.509 Public Key Infrastructure (PKIX) authentication in Transport Layer Security (TLS) protocol. Transparency logs issue signed promises of inclusions to be used together with certificates for authentication of TLS servers. Google Chrome enforces the use of Certificate Transparency for validation of Extended Validation (EV) certificates. This thesis proposes a methodology for asserting correct operation and presents a survey of active Logs. An experimental Monitor has been implemented as part of the thesis. Varying Log usage patterns and metadata about Log operation are presented, and Logs are categorized based on characteristics and usage. A case of mis-issuance by Symantec is presented to show the effectiveness of Certificate Transparency.

Place, publisher, year, edition, pages
2016. , 84 p.
Keyword [en]
Transparency, Certificate, SSL, TLS, Authetication, X.509
National Category
Engineering and Technology
URN: urn:nbn:se:liu:diva-125855ISRN: LIU-IDA/LITH-EX-A--16/001--SEOAI: diva2:909303
External cooperation
Subject / course
Computer science
2016-01-28, John von Neumann, Linköping, 13:00 (English)
Available from: 2016-03-10 Created: 2016-03-06 Last updated: 2016-03-10Bibliographically approved

Open Access in DiVA

fulltext(968 kB)146 downloads
File information
File name FULLTEXT01.pdfFile size 968 kBChecksum SHA-512
Type fulltextMimetype application/pdf

Search in DiVA

By author/editor
Gustafsson, Josef
By organisation
Database and information techniques
Engineering and Technology

Search outside of DiVA

GoogleGoogle Scholar
Total: 146 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

Total: 319 hits
ReferencesLink to record
Permanent link

Direct link