On the Validation of Web X.509 Certificates by TLS Interception Products

Artigo Acesso aberto Revisado por pares

On the Validation of Web X.509 Certificates by TLS Interception Products

2020; IEEE Computer Society; Volume: 19; Issue: 1 Linguagem: Inglês

10.1109/tdsc.2020.3000595

ISSN

2160-9209

Autores

Ahmad Samer Wazan, Romain Laborde, David Chadwick, Rémi Venant, Abdelmalek Benzekri, Eddie Billoir, Omar Alfandi,

Tópico(s)

Internet Traffic Analysis and Secure E-voting

Resumo

The Transport Layer Security (TLS) protocol aims to provide confidentiality and integrity of data. It is based on X.509 Certificates. Our previous research showed that popular Web Browsers exhibit non-standardized behaviour with respect to the certificate validation process [1] . This article extends that work by examining their handling of OCSP Stapling. We also examine several popular HTTPS interception products, including proxies and anti-virus tools, regarding their certificate validation processes. We analyse and compare their behaviour to that described in the relative standards.

Ver no editor

Altmetric

PlumX

Entrar

Lembrar minha senha

Receber meu e-mail de confirmação

On the Validation of Web X.509 Certificates by TLS Interception Products