2017
DOI: 10.1007/978-3-319-56549-1_15
|View full text |Cite
|
Sign up to set email alerts
|

Empirical Analysis of SSL/TLS Weaknesses in Real Websites: Who Cares?

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
1

Citation Types

0
1
0

Year Published

2019
2019
2022
2022

Publication Types

Select...
2

Relationship

0
2

Authors

Journals

citations
Cited by 2 publications
(1 citation statement)
references
References 8 publications
0
1
0
Order By: Relevance
“…While many revisions and alterations have been required to patch the protocols, no cryptographic vulnerability is known to exist that would allow to fully compromise the underlying end-to-end security model. This said, a number of high-profile TLS/SSL vulnerabilities (including the so-called Heartbleed, FREAK, and DROWN) have been discovered and disclosed in recent years [25,34]. In addition to these vulnerabilities, a long-standing weakness originates from the global PKI and its CA-based trust model [12,16].…”
Section: Introductionmentioning
confidence: 99%
“…While many revisions and alterations have been required to patch the protocols, no cryptographic vulnerability is known to exist that would allow to fully compromise the underlying end-to-end security model. This said, a number of high-profile TLS/SSL vulnerabilities (including the so-called Heartbleed, FREAK, and DROWN) have been discovered and disclosed in recent years [25,34]. In addition to these vulnerabilities, a long-standing weakness originates from the global PKI and its CA-based trust model [12,16].…”
Section: Introductionmentioning
confidence: 99%