2015
DOI: 10.1186/s13635-014-0018-0
|View full text |Cite
|
Sign up to set email alerts
|

Laribus: privacy-preserving detection of fake SSL certificates with a social P2P notary network

Abstract: In this paper we present Laribus, a peer-to-peer network designed to detect local man-in-the-middle attacks against secure socket layer/transport layer security (SSL/TLS). With Laribus, clients can validate the authenticity of a certificate presented to them by retrieving it from different vantage points on the network. Unlike previous solutions, clients do not have to trust a central notary service nor do they have to rely on the cooperation of website owners. The Laribus network is based on a social network … Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
3
1

Citation Types

0
4
0

Year Published

2016
2016
2022
2022

Publication Types

Select...
5
1

Relationship

0
6

Authors

Journals

citations
Cited by 15 publications
(4 citation statements)
references
References 42 publications
0
4
0
Order By: Relevance
“…Since P2P networks are largely anonymous and decentralized, security is a major issue attracting the interest of researchers such as [2], [19]- [25], [52]. The authors in [2] examined the effect of anonymity on P2P users deviant tendencies.…”
Section: Security and Trust Issue In P2p Networkmentioning
confidence: 99%
See 2 more Smart Citations
“…Since P2P networks are largely anonymous and decentralized, security is a major issue attracting the interest of researchers such as [2], [19]- [25], [52]. The authors in [2] examined the effect of anonymity on P2P users deviant tendencies.…”
Section: Security and Trust Issue In P2p Networkmentioning
confidence: 99%
“…Another use will be to conceal communications between journalists and information sources. Meanwhile, a P2P based network capable of detecting local man-in-the-middle attack targets at secure socket layer (SSL) and transport layer security (TLS) was proposed in [25]. The design neither rely on centralized notary service nor owners of websites, rather, the proposed design authenticate certificate via retrieving them at various points on the network.…”
Section: Security and Trust Issue In P2p Networkmentioning
confidence: 99%
See 1 more Smart Citation
“…Convergence [23] builds on the same principles as Perspectives and provides further methods for trust management. Bates et al [2] tried to answer the question of what happens if everyone is using the notary service Convergence; Fuchs et al extended the approach of centralized notary servers and implemented Laribus [13], a P2Pbased approach on notary services. Laribus is based on a social graph, which allows users to build notary groups without the need to rely on a central notary server.…”
Section: Tls Certificate Validationmentioning
confidence: 99%