Skip to content. | Skip to navigation

Personal tools

This is SunRain Plone Theme

Navigation

You are here: Home / Publications

Abstract

Quirin Scheitle, Oliver Gasser, Theodor Nolte, Johanna Amann, Lexi Brent, Georg Carle, Ralph Holz, Thomas C. Schmidt, Matthias Wählisch,
The Rise of Certificate Transparency and Its Implications on the Internet Ecosystem,
In: Proc. of ACM Internet Measurement Conference (IMC 2018), p. 343–349, ACM : New York, NY, USA, October 2018.
[html][BibTeX][Abstract]

Abstract: In this paper, we analyze the evolution of Certificate Transparency (CT) over time and explore the implications of exposing certificate DNS names from the perspective of security and privacy. We find that certificates in CT logs have seen exponential growth. Website support for CT has also constantly increased, with now a majority of established connections supporting CT. With the increasing deployment of CT, there are also concerns of information leakage due to all certificates being visible in CT logs. To understand this threat, we introduce a CT honeypot and show that data from CT logs is being used to identify targets for scanning campaigns only minutes after certificate issuance. We present and evaluate a methodology to learn and validate new subdomains from the vast number of domains extracted from CT logged certificates.

Themes: Network Security, Internet Measurement and Analysis

 


This page generated by bibTOhtml on Wed 24 Jul 00:05:06 CEST 2019

Document Actions

« July 2019 »
July
MoTuWeThFrSaSu
1234567
891011121314
15161718192021
22232425262728
293031
Upcoming Events
IETF 105 Jul 20, 2019 - Jul 26, 2019 — Montreal
RIOT Hack'n'ACK (2019/07) Jul 30, 2019 05:00 PM - 11:00 PM — HAW Hamburg, BT7, R4.60
RIOT Hack'n'ACK (2019/08) Aug 27, 2019 05:00 PM - 11:00 PM — HAW Hamburg, BT7, R4.60
Upcoming events…