Skip to content. | Skip to navigation

Personal tools

This is SunRain Plone Theme

Navigation

You are here: Home / Publications

Abstract

Quirin Scheitle, Oliver Gasser, Theodor Nolte, Johanna Amann, Lexi Brent, Georg Carle, Ralph Holz, Thomas C. Schmidt, Matthias Wählisch,
The Rise of Certificate Transparency and Its Implications on the Internet Ecosystem,
In: Proc. of ACM Internet Measurement Conference (IMC 2018), p. 343–349, ACM : New York, NY, USA, October 2018.
[html][BibTeX][Abstract]

Abstract: In this paper, we analyze the evolution of Certificate Transparency (CT) over time and explore the implications of exposing certificate DNS names from the perspective of security and privacy. We find that certificates in CT logs have seen exponential growth. Website support for CT has also constantly increased, with now a majority of established connections supporting CT. With the increasing deployment of CT, there are also concerns of information leakage due to all certificates being visible in CT logs. To understand this threat, we introduce a CT honeypot and show that data from CT logs is being used to identify targets for scanning campaigns only minutes after certificate issuance. We present and evaluate a methodology to learn and validate new subdomains from the vast number of domains extracted from CT logged certificates.

Themes: Network Security, Internet Measurement and Analysis

 


This page generated by bibTOhtml on Mon 20 May 00:05:08 CEST 2019

Document Actions

« May 2019 »
May
MoTuWeThFrSaSu
12345
6789101112
13141516171819
20212223242526
2728293031
Upcoming Events
IFIP Networking Conference May 20, 2019 - May 22, 2019 — Warsaw, Poland
RIOT Hack'n'ACK (2019/05) May 28, 2019 05:00 PM - 11:00 PM — HAW Hamburg, BT7, R4.60
RIOT Hack'n'ACK (2019/06) Jun 25, 2019 05:00 PM - 11:00 PM — HAW Hamburg, BT7, R4.60
Upcoming events…