an end to end measurement of certificate revocation in
play

An End-to-End Measurement of Certificate Revocation in the Webs PKI - PowerPoint PPT Presentation

Dec 02, 2022 •631 likes •1.32k views

An End-to-End Measurement of Certificate Revocation in the Webs PKI Yabing Liu*, Will Tome*, Liang Zhang*, David Choffnes*, Dave Levin , Bruce Maggs , Alan Mislove*, Aaron Schulman , Christo Wilson* University of Maryland

  1. An End-to-End Measurement of Certificate Revocation in the Web’s PKI Yabing Liu*, Will Tome*, Liang Zhang*, David Choffnes*, Dave Levin † , Bruce Maggs ‡ , Alan Mislove*, Aaron Schulman § , Christo Wilson* † University of Maryland *Northeastern University ‡ Duke University and Akamai Technologies § Stanford University

  2. Public Key Infrastructures (PKIs) How can users truly know with whom they are communicating? Browser Website 2

  3. Public Key Infrastructures (PKIs) How can users truly know with whom they are communicating? Browser Website 2

  4. Public Key Infrastructures (PKIs) How can users truly know with whom they are communicating? Browser Website 2

  5. Public Key Infrastructures (PKIs) How can users truly know with whom they are communicating? Browser Website Certificate Authority 2

  6. Public Key Infrastructures (PKIs) How can users truly know with whom they are communicating? Browser Website Vetting Certificate Authority 2

  7. 
 Public Key Infrastructures (PKIs) How can users truly know with whom they are communicating? Browser Website Certificate Authority The owner of is indeed BoA Certificate 2

  8. Public Key Infrastructures (PKIs) How can users truly know with whom they are communicating? Browser Website Certificate Certificate Certificate Authority 2

  9. Certificate revocation What happens when a certificate is no longer valid? Browser Website Certificate Certificate Authority 3

  10. Certificate revocation What happens when a certificate is no longer valid? Browser Website Certificate Attacker Certificate Certificate Authority 3

  11. Certificate revocation What happens when a certificate is no longer valid? Attacker Browser Certificate Certificate Authority 3

  12. Certificate revocation What happens when a certificate is no longer valid? Attacker Browser Certificate Certificate Certificate Authority 3

  13. Certificate revocation What happens when a certificate is no longer valid? Attacker Browser Certificate Certificate Please 
 Certificate Authority revoke ✗ Certificate Certificate 
 Revocation 3

  14. Certificate revocation What happens when a certificate is no longer valid? Attacker Browser Certificate Certificate Please 
 Certificate Authority revoke ✗ ✗ ✗ Certificate Certificate Certificate ✗ ✗ ✗ Certificate Certificate Certificate 3

  15. Certificate revocation What happens when a certificate is no longer valid? Attacker Browser Certificate Certificate Periodically pull / query Please 
 Certificate Authority revoke (CRL) (OCSP) ✗ ✗ ✗ Certificate Certificate Certificate ✗ ✗ ✗ Certificate Certificate Certificate 3

  16. Certificate revocation What happens when a certificate is no longer valid? ✗ Attacker Browser ✗ Certificate Certificate Certificate Periodically pull / query Please 
 Certificate Authority revoke (CRL) (OCSP) ✗ ✗ ✗ Certificate Certificate Certificate ✗ ✗ ✗ Certificate Certificate Certificate 3

  17. Certificate revocation responsibilities ✗ Administrators must revoke certificates 
 Certificate when keys are compromised Certificate authorities must publish revocations 
 as quickly as possible Browsers must check revocation status 
 on each connection This talk: 
 Do these entities do what they need to do? 4

  18. Outline ✗ Website admin behavior Certificate e.g., what is the frequency of revocation? Certificate authorities behavior e.g., how do CAs serve revocations? Client behavior e.g., do browsers check revocations? 5

  19. Dataset Rapid7 IPv4 scans 38M certs (~ 1 /wk for 18mos) 6

  20. Dataset 38M certs Non-CA Rapid7 IPv4 classify scans CA 38M certs (~ 1 /wk for 18mos) 1,946 certs 6

  21. Dataset 38M certs Non-CA Rapid7 IPv4 classify Leaf Set validate scans CA 5M valid certs 38M certs (~ 1 /wk for 18mos) 1,946 certs 6

  22. Dataset 38M certs Non-CA Rapid7 IPv4 classify Leaf Set validate scans CA 5M valid certs 38M certs (~ 1 /wk for 18mos) 1,946 certs Download revocation information daily 6

  23. How frequently are certificates revoked? Percentage of Fresh Certs 12.0 that are Revoked 10.0 8.0 6.0 4.0 2.0 0.0 01/14 03/14 05/14 07/14 09/14 11/14 01/15 03/15 Date 7

  24. How frequently are certificates revoked? Percentage of Fresh Certs 12.0 that are Revoked 10.0 8.0 6.0 4.0 2.0 0.0 01/14 03/14 05/14 07/14 09/14 11/14 01/15 03/15 Date Significant fraction of certificates revoked 
 1% in steady state; more than 8% after Heartbleed 7

  25. Are there revoked certificates being used? 0.006 Fraction of Alive Certs 0.005 that are Revoked 0.004 0.003 0.002 0.001 0.000 01/14 03/14 05/14 07/14 09/14 11/14 01/15 03/15 Date Over 0.5% advertised certificates are revoked 
 Website admins failed to update their servers 8

  26. Outline ✗ Website admin behavior Certificate e.g., revocation is common ~8% Certificate authorities behavior e.g., how do CAs serve revocations? Client behavior e.g., do browsers check revocations? 9

  27. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Certificate Certificate Authority ✗ ✗ ✗ ✗ ✗ ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate Certificate Certificate Certificate Certificate Certificate 10

  28. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Certificate Certificate Authority ✗ ✗ ✗ ✗ ✗ ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate Certificate Certificate Certificate Certificate Certificate 10

  29. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Certificate Certificate Authority ✗ ✗ ✗ ✗ ✗ ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate Certificate Certificate Certificate Certificate Certificate 10

  30. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate Certificate Authority ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate 10

  31. Cost of obtaining CRLs 1 0.9 0.8 0.7 0.6 CDF 0.5 0.4 0.3 0.2 0.1 0 0.1 1 10 100 1000 10000 CRL Size (KB) 11

  32. Cost of obtaining CRLs 1 0.9 0.8 76MB Apple CRL 0.7 0.6 CDF 0.5 0.4 0.3 0.2 0.1 0 0.1 1 10 100 1000 10000 CRL Size (KB) 11

  33. Cost of obtaining CRLs 1 0.9 0.8 76MB Apple CRL 0.7 0.6 CDF 0.5 0.4 0.3 0.2 Raw 0.1 Weighted 0 0.1 1 10 100 1000 10000 CRL Size (KB) Most CRLs small, but large CRLs downloaded more often 
 Result: 50% of certs have CRLs larger than 45KB 11

  34. CRLs from different CAs Certificates Unique Avg. CRL CA CRLs size (KB) Total Revoked GoDaddy 322 1,050,014 277,500 1,184.0 RapidSSL 5 626,774 2,153 34.5 Comodo 30 447,506 7,169 517.6 PositiveSSL 3 415,075 8,177 441.3 Verisign 37 311,788 15,438 205.2 CAs use only a small number of CRLs 12

  35. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Authority ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate 13

  36. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Certificate Authority ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate 13

  37. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Certificate Certificate Authority ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate 13

  38. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Certificate Certificate Authority ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate 13

  39. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Certific / ✗ ✔ Certific Certificate Authority ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate 13

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

An End-to-End Measurement of Certificate Revocation in the Webs PKI Yabing Liu*, Will Tome*,

An End-to-End Measurement of Certificate Revocation in the Webs PKI Yabing Liu*, Will Tome*,

An End-to-End Measurement of Certificate Revocation in the Webs PKI Yabing Liu*, Will Tome*, Liang Zhang*, David Choffnes*, Dave Levin , Bruce Maggs , Alan Mislove*, Aaron Schulman , Christo Wilson* *Northeastern University

1.33k views • 65 slides
Revocation Methods Explicit: CRL - Certificate Revocation List Sources: CRL-DP, indirect

Revocation Methods Explicit: CRL - Certificate Revocation List Sources: CRL-DP, indirect

Revocation Methods Explicit: CRL - Certificate Revocation List Sources: CRL-DP, indirect CRL, dynamic CRL-DP Delta-CRL, windowed CRL, etc. Certificate Revocation Tree (CRT) and other Authenticated Data Structures OCSP

745 views • 35 slides
Efficient, Scalable, and Resilient Vehicle-Centric Certificate Revocation List Distribution in

Efficient, Scalable, and Resilient Vehicle-Centric Certificate Revocation List Distribution in

Efficient, Scalable, and Resilient Vehicle-Centric Certificate Revocation List Distribution in VANETs Mohammad Khodaei and Panos Papadimitratos Networked Systems Security Group (NSS) www.ee.kth.se/nss Royal Institute of Technology (KTH)

700 views • 35 slides
Scalable Secret Key and Certificate Revocation List Distribution for Hierarchical Vehicular Ad-hoc

Scalable Secret Key and Certificate Revocation List Distribution for Hierarchical Vehicular Ad-hoc

Scalable Secret Key and Certificate Revocation List Distribution for Hierarchical Vehicular Ad-hoc Networks Kastuv M. Tuladhar Department of Computer Science University of South Dakota kastuv.tuladhar@coyotes.usd.edu November 20, 2018 Thesis

991 views • 68 slides
Lets Revoke Public key infrastructure prevents Man-in-the-Middle attacks Revocation protects

Lets Revoke Public key infrastructure prevents Man-in-the-Middle attacks Revocation protects

Lets Revoke Public key infrastructure prevents Man-in-the-Middle attacks Revocation protects clients from compromised certificates Without revocation, these attacks would go undetected 2 Certificate Revocation Lists (CRLs) Lists of

544 views • 27 slides
Scalable & Resilient Vehicle-Centric Certificate Revocation List Distri- bution in Vehicular

Scalable & Resilient Vehicle-Centric Certificate Revocation List Distri- bution in Vehicular

KTH ROYAL INSTITUTE OF TECHNOLOGY Scalable & Resilient Vehicle-Centric Certificate Revocation List Distri- bution in Vehicular Communication Systems Mohammad Khodaei and Panos Papadimitratos Networked Systems Security Group (NSS)

981 views • 52 slides
A Distributed A Distributed Online Certificate Status Protocol Online Certificate Status

A Distributed A Distributed Online Certificate Status Protocol Online Certificate Status

A Distributed A Distributed Online Certificate Status Protocol Online Certificate Status Protocol Satoshi Koga, Kouichi Sakurai Satoshi Koga Kyushu University, Japan Background Background Certificate Revocation Problem Certificate

349 views • 10 slides
RevCast : Fast, Private Certificate Revocation over FM radio Aaron Schulman Stanford University

RevCast : Fast, Private Certificate Revocation over FM radio Aaron Schulman Stanford University

RevCast : Fast, Private Certificate Revocation over FM radio Aaron Schulman Stanford University Dave Levin Neil Spring University of Maryland University of Maryland Authentication in the PKI Authentication in the PKI I want an

834 views • 81 slides
Certificates, Revocation and the new gTLD's Oh My! Dan Timpson sales@digicert.com

Certificates, Revocation and the new gTLD's Oh My! Dan Timpson sales@digicert.com

Certificates, Revocation and the new gTLD's Oh My! Dan Timpson sales@digicert.com www.digicert.com +1 (801) 877-2100 Focus What is a Certificate Authority? Current situation with gTLD's and internal names

246 views • 13 slides
Public Key Infrastructure Towards a reliable revocation status checking method Royal Holloway,

Public Key Infrastructure Towards a reliable revocation status checking method Royal Holloway,

Public Key Infrastructure Towards a reliable revocation status checking method Royal Holloway, University of London Keith Vella Licari Weekend Conference 2013 keith@vellalicari.com Agenda About me Project approach Certificate

446 views • 27 slides
Recommendation Overview KNOWLEDGE ACADEMIES REVOCATION APPEALS OCTOBER 28, 2019 Statutory Charge

Recommendation Overview KNOWLEDGE ACADEMIES REVOCATION APPEALS OCTOBER 28, 2019 Statutory Charge

Recommendation Overview KNOWLEDGE ACADEMIES REVOCATION APPEALS OCTOBER 28, 2019 Statutory Charge REVOCATIONS AND REVOCATION APPEALS The Revocation Decision Pursuant to T.C.A. 49-13-122(b), a charter school authorizer may revoke a

386 views • 35 slides
Fintech Certificate Fintech Certificate Fintech Certificate 2 Investment Case The AtonR

Fintech Certificate Fintech Certificate Fintech Certificate 2 Investment Case The AtonR

Fintech Certificate Fintech Certificate Fintech Certificate 2 Investment Case The AtonR Fintech Index is a long-only, USD-based, actively managed total return index. The pace of innovation in financial technology (Fintech) has been

616 views • 26 slides
Secure Path-Key Revocation for Symmetric Key Pre-distribution Schemes in Sensor Networks Tyler

Secure Path-Key Revocation for Symmetric Key Pre-distribution Schemes in Sensor Networks Tyler

Introduction & background Path-key-enabled attacks Secure path-key revocation Conclusions Secure Path-Key Revocation for Symmetric Key Pre-distribution Schemes in Sensor Networks Tyler Moore and Jolyon Clulow University of Cambridge

505 views • 22 slides
NEO PA/VA system EN 54 -16 Certificate No. 2426-CPR-105 PA/VA System EN 54 -16 Certificate No.

NEO PA/VA system EN 54 -16 Certificate No. 2426-CPR-105 PA/VA System EN 54 -16 Certificate No.

NEO PA/VA system EN 54 -16 Certificate No. 2426-CPR-105 PA/VA System EN 54 -16 Certificate No. 2426-CPR-105 NEO is an innovative Public Address and Voice Alarm system that allows an easy audio installation with just one piece of equipment.

326 views • 7 slides
Measurement There are two main systems of measurement: - The English system

Measurement There are two main systems of measurement: - The English system

4 - 1 Introduction Measurement is finding a number that shows the size or amount of something. Measurement is done using measuring tools. Measurement There are two main systems of measurement: - The

438 views • 4 slides
1 4/3/2015 AMEs In Your Area If You Decide to Renew Your Medical So Whats This Light Sport

1 4/3/2015 AMEs In Your Area If You Decide to Renew Your Medical So Whats This Light Sport

4/3/2015 New Plastic Pilot Certificate So, Where Do I Start? What we will cover today Your old paper certificate is no longer valid. What it takes to be PIC again Google Search: Replacement of Airmen Certificate What has

485 views • 35 slides
Command Line Tool for Certificate Management Anand Padmanabhan CyberInfrastructure and

Command Line Tool for Certificate Management Anand Padmanabhan CyberInfrastructure and

Purpose vdt-ca-manage Tool Demo Conclusion Command Line Tool for Certificate Management Anand Padmanabhan CyberInfrastructure and Geospatial Information Laboratory (CIGI) National Center for Supercomputing Applications University of

341 views • 16 slides
The Business Case for NursingCAS AACN is the national membership organization for 800 nursing

The Business Case for NursingCAS AACN is the national membership organization for 800 nursing

Plenary AACNs Business Officers of Nursing Schools Session (BONUS) Meeting April 19, 2017 8:30 9:30 AM Savannah, GA Featured Speaker: Vince Gattuso , MBA, Director of Finance, Rush University College of Nursing, Chicago, IL Caroline

413 views • 29 slides
How to Give a Good Technical Presentation Thomas J. Dolan ASIPP Hefei 2011 American Nuclear

How to Give a Good Technical Presentation Thomas J. Dolan ASIPP Hefei 2011 American Nuclear

How to Give a Good Technical Presentation Thomas J. Dolan ASIPP Hefei 2011 American Nuclear Society Speakers Bureau dolan asipp 2011 1 Importance po a ce Planning g Preparation p Practice Performance References: Brian Dodd, IAEA

531 views • 39 slides
1 TeraGrid Allocations TeraGrid Single Sign-On Resources allocated by peer review TeraGrid

1 TeraGrid Allocations TeraGrid Single Sign-On Resources allocated by peer review TeraGrid

Goal Enable researchers to use the authentication method of their home organization for access to TeraGrid Researchers dont need to use TeraGrid-specific credentials Federated Login to Avoid distribution of TeraGrid-specific

734 views • 7 slides
Public Key Infrastructure PKI Michael Maass and Blase Ur 1 Outline Intro to cryptography

Public Key Infrastructure PKI Michael Maass and Blase Ur 1 Outline Intro to cryptography

Public Key Infrastructure PKI Michael Maass and Blase Ur 1 Outline Intro to cryptography Intro to PKI / Davis reading Current issues Gaw reading PKI in the enterprise Discussion 2 Introduction to Encryption We want

731 views • 47 slides
UIMA: Unstructured Information Management Architecture Alessandro Moschitti Department of

UIMA: Unstructured Information Management Architecture Alessandro Moschitti Department of

UIMA: Unstructured Information Management Architecture Alessandro Moschitti Department of Computer Science and Information Engineering University of Trento Email: moschitti@disi.unitn.it Motivations Nowadays, natural language processing

620 views • 35 slides
D e e p o b s e r v a t i o n s o f C a s A wi t h MA G I C i n d i

D e e p o b s e r v a t i o n s o f C a s A wi t h MA G I C i n d i

D e e p o b s e r v a t i o n s o f C a s A wi t h MA G I C i n d i c a t e i t i s n o P e V a t r o n D . G u b e r ma n , J . C o r t i n a , E . d e O a Wi l h e

358 views • 19 slides
CAS DIVERSITY, EQUITY, AND INCLUSION EFFORTS AND OSU RESOURCES June 10, 2020 Dr. Kim Loe ff ert

CAS DIVERSITY, EQUITY, AND INCLUSION EFFORTS AND OSU RESOURCES June 10, 2020 Dr. Kim Loe ff ert

CAS DIVERSITY, EQUITY, AND INCLUSION EFFORTS AND OSU RESOURCES June 10, 2020 Dr. Kim Loe ff ert Clinical Associate Professor, Greenwood School of Music CAS Faculty Fellow for Diversity, Equity, and Inclusion kim.loe ff ert@okstate.edu The

492 views • 6 slides

More recommend