On the Validation of Web X.509 Certificates by TLS Interception Products

Wazan, Ahmad Samer; Laborde, Romain; Chadwick, David; Venant, Rémi; Benzekri, Abdelmalek; Billoir, Eddie; Alfandi, Omar

doi:10.1109/tdsc.2020.3000595

Cited by 12 publications

(2 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…A Certificate Authority (CA) is a third party trusted by browsers and domain owners alike, issuing such certificates which link a specific domain name to the public key used by the host server. [20] The authentication of a communication endpoint can also build upon the physical presence of a hardware device, either via properties of the device itself (e.g. Physical Unclonable Functions (PUFs) [21]) or via private information stored on the device (e.g.…”

Section: ) Authenticationmentioning

confidence: 99%

The Road to Trustworthy 6G: A Survey on Trust Anchor Technologies

Krummacker

Schotten

2023

IEEE Open J. Commun. Soc.

View full text Add to dashboard Cite

While 5G networks are driving a growing number of use cases in the fields of Internet of Things (IoT) and industrial applications, the vision of the next generation of mobile communications systems already includes concepts massively transforming the way people will interact with the digital world through the network, as humans are shifting into the center of diverse network driven applications. Envisaged use cases and possibilities to provide services and resources in a distributed manner render an architectural solution for trust establishment a critical component of 6G networks. This survey provides an overview of terms and visions related to the topic of trust in general and in mobile communications systems. Requirements for an end-to-end trust building framework are derived, in order to give a starting point for the design process of a trust anchor service as a component of 6G networks.

show abstract

Section: ) Authenticationmentioning

confidence: 99%

The Road to Trustworthy 6G: A Survey on Trust Anchor Technologies

Krummacker

Schotten

2023

IEEE Open J. Commun. Soc.

View full text Add to dashboard Cite

show abstract

“…Web browsers and other client applications must verify the certificate by downloading the CRL or accessing the OCSP responder. Validation of certificates is important to maintain secure communication, and users should carefully perform validation to avoid encrypted communication by unreliable certificates [8,9].…”

Section: Introductionmentioning

confidence: 99%

Verifying Certificate Revocation Status for Short Key Lengths in Vehicle Communication Systems

Kim

2024

JMC

View full text Add to dashboard Cite

This paper proposes and analyzes a ticket-based OCSP protocol for efficient certificate revocation checking in vehicle communication systems. The IEEE WAVE standard for vehicular networks requires real-time processing of Basic Safety Messages (BSMs) exchanged between vehicles. Traditional OCSP revocation checking can introduce delays. The proposed approach distributes OCSP responses as tickets valid for a road section. Vehicles use shorter keys extracted from the tickets for faster cryptographic processing. Experiments compare processing times for signature generation and verification with different elliptic curves. The results show the proposed technique provides faster revocation checking. This allows time-critical vehicle-to-vehicle message processing at high rates under computational constraints. The ticket-based OCSP mechanism enhances security while meeting real-time requirements in vehicular networks.

show abstract