Please use this identifier to cite or link to this item: https://hdl.handle.net/20.500.11851/834
Full metadata record
DC FieldValueLanguage
dc.contributor.authorYüce, Emre-
dc.contributor.authorSelçuk, Ali Aydın-
dc.date.accessioned2019-03-25T06:35:56Z
dc.date.available2019-03-25T06:35:56Z
dc.date.issued2018-09-01
dc.identifier.citationYüce, E., & Selçuk, A. A. (2018). Server notaries: a complementary approach to the web PKI trust model. IET Information Security, 12(5), 455-461.en_US
dc.identifier.issn1751-8709
dc.identifier.urihttps://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=8436509-
dc.identifier.urihttps://hdl.handle.net/20.500.11851/834-
dc.description.abstractSecure socket layer/transport layer security (TLS) is the de facto protocol for providing secure communications over the Internet. It relies on the web PKI model for authentication and secure key exchange. Despite its relatively successful past, the number of web PKI incidents observed have increased recently. These incidents revealed the risks of forged certificates issued by certificate authorities without the consent of the domain owners. Several solutions have been proposed to solve this problem but no solution has yet received widespread adoption due to complexity and deployability issues. In this study, the authors propose an effective solution for this problem that allows a TLS server to detect a certificate substitution attack against its domain across the Internet. The proposed solution is practical and allows a smooth and gradual transition. They also give a triangulation algorithm enabling the server to find out the origin of the attack. They conducted simulation experiments using real-world BGP data and showed that their proposal can be effective for detecting and locating attacks using relatively few vantage points over the Internet.en_US
dc.language.isoenen_US
dc.publisherInstitution of Engineering and Technologyen_US
dc.relation.ispartofIET Information Securityen_US
dc.rightsinfo:eu-repo/semantics/closedAccessen_US
dc.subjectX.509 certificatesen_US
dc.subjectCryptographyen_US
dc.subjectInterneten_US
dc.titleServer Notaries: a Complementary Approach To the Web Pki Trust Modelen_US
dc.typeArticleen_US
dc.departmentFaculties, Faculty of Engineering, Department of Computer Engineeringen_US
dc.departmentFakülteler, Mühendislik Fakültesi, Bilgisayar Mühendisliği Bölümütr_TR
dc.identifier.volume12en_US
dc.identifier.issue5en_US
dc.identifier.startpage455en_US
dc.identifier.endpage461en_US
dc.identifier.wosWOS:000441514600010en_US
dc.identifier.scopus2-s2.0-85051817600en_US
dc.institutionauthorSelçuk, Ali Aydın-
dc.identifier.doi10.1049/iet-ifs.2016.0611-
dc.identifier.doi10.1049/iet-ifs.2016.0611-
dc.relation.publicationcategoryMakale - Uluslararası Hakemli Dergi - Kurum Öğretim Elemanıen_US
dc.identifier.scopusqualityQ2-
item.openairetypeArticle-
item.languageiso639-1en-
item.grantfulltextnone-
item.fulltextNo Fulltext-
item.openairecristypehttp://purl.org/coar/resource_type/c_18cf-
item.cerifentitytypePublications-
crisitem.author.dept02.3. Department of Computer Engineering-
Appears in Collections:Bilgisayar Mühendisliği Bölümü / Department of Computer Engineering
Scopus İndeksli Yayınlar Koleksiyonu / Scopus Indexed Publications Collection
WoS İndeksli Yayınlar Koleksiyonu / WoS Indexed Publications Collection
Show simple item record



CORE Recommender

SCOPUSTM   
Citations

1
checked on Dec 21, 2024

Page view(s)

94
checked on Dec 23, 2024

Google ScholarTM

Check




Altmetric


Items in GCRIS Repository are protected by copyright, with all rights reserved, unless otherwise indicated.