Please use this identifier to cite or link to this item:
https://hdl.handle.net/20.500.11851/834Full metadata record
| DC Field | Value | Language |
|---|---|---|
| dc.contributor.author | Yüce, Emre | - |
| dc.contributor.author | Selçuk, Ali Aydın | - |
| dc.date.accessioned | 2019-03-25T06:35:56Z | |
| dc.date.available | 2019-03-25T06:35:56Z | |
| dc.date.issued | 2018-09-01 | |
| dc.identifier.citation | Yüce, E., & Selçuk, A. A. (2018). Server notaries: a complementary approach to the web PKI trust model. IET Information Security, 12(5), 455-461. | en_US |
| dc.identifier.issn | 1751-8709 | |
| dc.identifier.uri | https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=8436509 | - |
| dc.identifier.uri | https://hdl.handle.net/20.500.11851/834 | - |
| dc.description.abstract | Secure socket layer/transport layer security (TLS) is the de facto protocol for providing secure communications over the Internet. It relies on the web PKI model for authentication and secure key exchange. Despite its relatively successful past, the number of web PKI incidents observed have increased recently. These incidents revealed the risks of forged certificates issued by certificate authorities without the consent of the domain owners. Several solutions have been proposed to solve this problem but no solution has yet received widespread adoption due to complexity and deployability issues. In this study, the authors propose an effective solution for this problem that allows a TLS server to detect a certificate substitution attack against its domain across the Internet. The proposed solution is practical and allows a smooth and gradual transition. They also give a triangulation algorithm enabling the server to find out the origin of the attack. They conducted simulation experiments using real-world BGP data and showed that their proposal can be effective for detecting and locating attacks using relatively few vantage points over the Internet. | en_US |
| dc.language.iso | en | en_US |
| dc.publisher | Institution of Engineering and Technology | en_US |
| dc.relation.ispartof | IET Information Security | en_US |
| dc.rights | info:eu-repo/semantics/closedAccess | en_US |
| dc.subject | X.509 certificates | en_US |
| dc.subject | Cryptography | en_US |
| dc.subject | Internet | en_US |
| dc.title | Server notaries: A complementary approach to the web PKI trust model | en_US |
| dc.type | Article | en_US |
| dc.department | Faculties, Faculty of Engineering, Department of Computer Engineering | en_US |
| dc.department | Fakülteler, Mühendislik Fakültesi, Bilgisayar Mühendisliği Bölümü | tr_TR |
| dc.identifier.volume | 12 | en_US |
| dc.identifier.issue | 5 | en_US |
| dc.identifier.startpage | 455 | en_US |
| dc.identifier.endpage | 461 | en_US |
| dc.identifier.wos | WOS:000441514600010 | en_US |
| dc.identifier.scopus | 2-s2.0-85051817600 | en_US |
| dc.institutionauthor | Selçuk, Ali Aydın | - |
| dc.identifier.doi | 10.1049/iet-ifs.2016.0611 | - |
| dc.identifier.doi | 10.1049/iet-ifs.2016.0611 | - |
| dc.relation.publicationcategory | Makale - Uluslararası Hakemli Dergi - Kurum Öğretim Elemanı | en_US |
| dc.identifier.scopusquality | Q2 | - |
| item.languageiso639-1 | en | - |
| item.fulltext | No Fulltext | - |
| item.openairecristype | http://purl.org/coar/resource_type/c_18cf | - |
| item.grantfulltext | none | - |
| item.openairetype | Article | - |
| item.cerifentitytype | Publications | - |
| crisitem.author.dept | 02.3. Department of Computer Engineering | - |
| Appears in Collections: | Bilgisayar Mühendisliği Bölümü / Department of Computer Engineering Scopus İndeksli Yayınlar Koleksiyonu / Scopus Indexed Publications Collection WoS İndeksli Yayınlar Koleksiyonu / WoS Indexed Publications Collection | |
CORE Recommender
SCOPUSTM
Citations
1
checked on Nov 2, 2024
Page view(s)
92
checked on Oct 28, 2024
Google ScholarTM
Check
Altmetric
Items in GCRIS Repository are protected by copyright, with all rights reserved, unless otherwise indicated.