SSL Test Suite: SSL Certificate Test Public Key Infrastructure

Simsek, Merve Melis; Ergun, Tamer; Temuçin, Hüseyin

doi:10.1109/siu55565.2022.9864693

Cited by 2 publications

(1 citation statement)

References 0 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Despite the expectation that CAs produce certificates following a specific template, the number of SSL certificates in use that do not align with public key infrastructure and BR requirements is significant. Literature suggests the creation of a test suite to evaluate web browsers' behavior towards certificates not conforming to the SSL Baseline Requirements (Simsek et al, 2022). The Baseline Requirements document considered in the study is specific to SSL certificates, and the test suite was tailored to SSL certificates.…”

Section: Introductionmentioning

confidence: 99%

S/MIME Certificate Test Suite

FIDANER,

COSKUN,

ERGUN

2023

EPSTEM

View full text Add to dashboard Cite

In today's world, email usage has become a necessity. Emails, with a large user base, serve various functions not only for personal purposes but also for facilitating communication between teams in the business world and acting as a point of contact for organizations with their customers. Emails that have infiltrated our lives are also at the center of data breaches, leaks, and malicious attacks. To ensure email security, it is possible to send digitally signed and encrypted emails using the public key infrastructure-based S/MIME certificates. The existing standards for S/MIME certificates were deemed insufficient, and in 2023, for the first time, the Certificate Authority/Browser (CA/B) Forum, consisting of Certificate Authorities (CA) and application software providers and recognized as an international authority, published the S/MIME Baseline Requirements (BR) document. While compliance with the Baseline Requirements document published by the CA/B Forum ensures reliability through conformity checks for SSL certificates used in web security, this audit was considered insufficient. To monitor and audit SSL certificates, the Certificate Transparency project was introduced, aiming to provide an open structure to safeguard the certificate issuance process. However, in reliable S/MIME certificates, the control mechanism is limited to BR audits. The study establishes a comprehensive S/MIME certificate public key infrastructure that allows analyzing email applications; behaviors in the face of certificates that do not comply with the BR during the certificate validation phase. Additionally, the study aims to develop a user application that enables end-users to test the security and compliance of certificates with the BR.

show abstract

Section: Introductionmentioning

confidence: 99%