Publisher DOI: 10.48550/arXiv.2401.18053
Title: How to measure TLS, X.509 certificates, and web PKI : a tutorial and brief survey
Language: English
Authors: Fotouhi Tehrani, Pouyan 
Osterweil, Eric 
Schmidt, Thomas C.  
Wählisch, Matthias 
Keywords: Internet Measurement; Internet Security; Web
Issue Date: 31-Jan-2024
Publisher: Cornell University
Journal or Series Name: Arxiv 
Abstract: 
Transport Layer Security (TLS) is the base for many Internet applications and services to achieve end-to-end security. In this paper, we provide guidance on how to measure TLS deployments, including X.509 certificates and Web PKI. We introduce common data sources and tools, and systematically describe necessary steps to conduct sound measurements and data analysis. By surveying prior TLS measurement studies we find that diverging results are rather rooted in different setups instead of different deployments. To improve the situation, we identify common pitfalls and introduce a framework to describe TLS and Web PKI measurements. Where necessary, our insights are bolstered by a data-driven approach, in which we complement arguments by additional measurements.
URI: https://hdl.handle.net/20.500.12738/19525
Review status: Only preprints: This version has not yet been reviewed
Institute: Department Informatik (ehemalig, aufgelöst 10.2025) 
Fakultät Technik und Informatik (ehemalig, aufgelöst 10.2025) 
Type: Preprint
Appears in Collections:Publications without full text

Show full item record

Google ScholarTM

Check

HAW Katalog

Check

Add Files to Item

Note about this record


Items in REPOSIT are protected by copyright, with all rights reserved, unless otherwise indicated.