Computer Science
2 years ago

Internet's Certificate Revocation Practices Exposed: Urgent Need for Transparency Standard.

arXiv (Cornell University)
Revocation Statuses on the Internet
Nikita Korzhitskii, Niklas Carlsson

Paper Summary

The Internet relies on X.509 certificates for trust, but sometimes these certificates need to be revoked. Currently, there is no standard way to transparently track revoked certificates. A study analyzed over 1 million revoked certificates, including those from Let's Encrypt, to understand revocation practices. The analysis showed that revocation statuses are short-lived, vary between different certificate authorities, and reveal biases in handling revoked certificates. This research suggests the need for a standard to make certificate revocation more transparent.

Related papers

Theme background image
Social Sciences
8 years ago

New Public Key Infrastructure Technology Enhances Internet Security and Privacy

Intelligence Studies
Theme background image
Computer Science
8 years ago

Enhanced security in e-commerce with split public key certificates!

Cryptographic Schemes
Security Protocols
Sensor Network Security
Theme background image
Computer Science
4 years ago

Blockchain Revolutionizes Cybersecurity with Decentralized Dynamic PKI System

Cryptographic Schemes
Blockchain IoT
Sensor Network Security