Analysis of the current state in website certificate validation - Forschungsportal der Justus-Liebig-Universität Gießen:

Journalartikel

Analysis of the current state in website certificate validation

Autorenliste: Gruschka, Nils; Lo Iacono, Luigi; Sorge, Christoph

Jahr der Veröffentlichung: 2014

Seiten: 865-877

Zeitschrift: Security and Communication Networks

Bandnummer: 7

Heftnummer: 5

ISSN: 1939-0114

eISSN: 1939-0122

DOI Link: https://doi.org/10.1002/sec.799

Verlag: Wiley

Abstract:

This paper presents an in-depth analysis of the certificate validation process employed in current web browsers. It discusses the shortcomings especially arising from the inappropriate management of the certificate status. Various improvements proposed so far are presented and analyzed with the aid of a threat model. The results are further enriched by some empirical studies. Finally, the outcomes of the aforementioned analysis are used to sketch an extended website certificate validation process with the aim of allowing for a better protection. Copyright (c) 2013 John Wiley & Sons, Ltd.

Autoren/Herausgeber

- Uni.-Prof. Dr.-Ing. Luigi Lo Iacono

Zitierstile

Harvard-Zitierstil: Gruschka, N., Lo Iacono, L. and Sorge, C. (2014) Analysis of the current state in website certificate validation, Security and Communication Networks, 7(5), pp. 865-877. https://doi.org/10.1002/sec.799

APA-Zitierstil: Gruschka, N., Lo Iacono, L., & Sorge, C. (2014). Analysis of the current state in website certificate validation. Security and Communication Networks. 7(5), 865-877. https://doi.org/10.1002/sec.799