SSL and HTTPS: Revisiting Past Challenges and Evaluating Certificate Trust Model Enhancements

Download Now
Provided by: Carleton University
Topic: Security
Format: PDF
Internet users today depend daily on HTTPS for secure communication with sites they intend to visit. Over the years, many attacks on HTTPS and the certificate trust model it uses have been hypothesized, executed, and/or evolved. Meanwhile the number of browser-trusted (and thus, de facto, user-trusted) certificate authorities has proliferated, while the due diligence in baseline certificate issuance has declined. The authors survey and categorize prominent security issues with HTTPS and provide a systematic treatment of the history and on-going challenges, intending to provide context for future directions.
Download Now

Find By Topic