Publisher DOI: 10.1145/3278532.3278562
Title: The Rise of Certificate Transparency and Its Implications on the Internet Ecosystem
Authors: Scheitle, Quirin 
Gasser, Oliver 
Nolte, Theodor 
Amann, Johanna 
Brent, Lexi 
Carle, Georg 
Holz, Ralph 
Schmidt, Thomas  
Wählisch, Matthias 
Issue Date: Oct-2018
Publisher: New York, USA ; Association for Computing Machinery
Startpage: 343
Endpage: 349
Conference: Internet Measurement Conference - IMC ; Association of the Computing Machinery ; Boston, MA 
Abstract: 
In this paper, we analyze the evolution of Certificate Transparency (CT) over time and explore the implications of exposing certificate DNS names from the perspective of security and privacy. We find that certificates in CT logs have seen exponential growth. Website support for CT has also constantly increased, with now a majority of established connections supporting CT. With the increasing deployment of CT, there are also concerns of information leakage due to all certificates being visible in CT logs. To understand this threat, we introduce a CT honeypot and show that data from CT logs is being used to identify targets for scanning campaigns only minutes after certificate issuance. We present and evaluate a methodology to learn and validate new subdomains from the vast number of domains extracted from CT logged certificates.
URI: http://hdl.handle.net/20.500.12738/686
Institute: Department Informatik 
Fakultät Technik und Informatik 
Type: Chapter/Article (Proceedings)
Appears in Collections:Publications without full text

Show full item record

Page view(s)

65
checked on Dec 25, 2024

Google ScholarTM

Check

HAW Katalog

Check

Add Files to Item

Note about this record


Items in REPOSIT are protected by copyright, with all rights reserved, unless otherwise indicated.