Stale TLS certificates: investigating precarious third-party access to valid TLS keys
Certificate authorities enable TLS server authentication by generating certificates that attest
to the mapping between a domain name and a cryptographic keypair, for up to 398 days …
to the mapping between a domain name and a cryptographic keypair, for up to 398 days …
Trust Issue (r) s: Certificate Revocation and Replacement Practices in the Wild
D Cerenius, M Kaller, CM Bruhner, M Arlitt… - … Conference on Passive …, 2024 - Springer
Every time we use the web, we place our trust in X. 509 certificates binding public keys to
domain identities. However, for these certificates to be trustworthy, proper issuance …
domain identities. However, for these certificates to be trustworthy, proper issuance …
Temporal analysis of X. 509 revocations and their statuses
A Halim, M Danielsson, M Arlitt… - 2022 IEEE European …, 2022 - ieeexplore.ieee.org
Despite the X. 509 public key infrastructure (PKI) being essential for ensuring the trust we
place in our communication with web servers, the revocation of the trust placed in individual …
place in our communication with web servers, the revocation of the trust placed in individual …
Longitudinal Analysis of Wildcard Certificates in the WebPKI
D Hasselquist, L Bolin, E Carlsson… - 2023 IFIP …, 2023 - ieeexplore.ieee.org
The use of wildcard certificates and multi-domain certificates can impact how sensitive a
certificate is to attacks and how many (sub) domains and machines may be impacted if a …
certificate is to attacks and how many (sub) domains and machines may be impacted if a …
[PDF][PDF] Chain-Sawing: A Longitudinal Analysis of Certificate Chains
M Döberl, YF von Wangenheim, CM Bruhner… - Proceedings of IFIP …, 2024 - ida.liu.se
The security and integrity of TLS certificates are essential for ensuring secure transmission
over the Internet and protecting millions of people from man-in-the-middle attacks. Certificate …
over the Internet and protecting millions of people from man-in-the-middle attacks. Certificate …
[PDF][PDF] Stale TLS Certificates
The modern web (eg, HTTPS, email) relies on Transport Layer Security (TLS) for server
authentication, with more than 75% of global website access occurring over HTTPS [36]. To …
authentication, with more than 75% of global website access occurring over HTTPS [36]. To …
Lost in Revocation: X. 509 WebPKI Certificate Replacement & Revocation practises
C David, K Martin - 2024 - diva-portal.org
Being able to revoke currently valid certificates is essential to the security of the Web Public-
Key Infrastructure (WebPKI), yet today's most widely deployed revocation protocols (CRLs …
Key Infrastructure (WebPKI), yet today's most widely deployed revocation protocols (CRLs …
Survey of domains and CAs re-garding certificate managementand certificate revocations: Ananalysis of certificate management and certificate revocation
H Nilsén, M Bergström - 2024 - diva-portal.org
This document presents the findings and methodology of a bachelor's thesis project that
aimed to understand the challenges and strategies associated with certificate management …
aimed to understand the challenges and strategies associated with certificate management …
The Shift Towards Certificate Revocation Lists: A longitudinal analysis of certificate revocation list usage
S Stensson - 2024 - diva-portal.org
This thesis presents a comprehensive longitudinal analysis and categorization of the usage
of certificate revocation lists (CRLs). By utilizing data collected from certificate transparency …
of certificate revocation lists (CRLs). By utilizing data collected from certificate transparency …
Cryptographic Key Exchange Using Blockchain Technology
FM Naeem, KH Alibraheem - Journal of Education for Pure Science …, 2024 - jceps.utq.edu.iq
Cryptographic key management systems (KMS) are an important component of secure
communications systems and organisations must protect sensitive information by …
communications systems and organisations must protect sensitive information by …