an end to end measurement of certificate revocation in
play

An End-to-End Measurement of Certificate Revocation in the Webs PKI - PowerPoint PPT Presentation

Feb 13, 2023 •660 likes •1.33k views

An End-to-End Measurement of Certificate Revocation in the Webs PKI Yabing Liu*, Will Tome*, Liang Zhang*, David Choffnes*, Dave Levin , Bruce Maggs , Alan Mislove*, Aaron Schulman , Christo Wilson* *Northeastern University

  1. An End-to-End Measurement of Certificate Revocation in the Web’s PKI Yabing Liu*, Will Tome*, Liang Zhang*, David Choffnes*, Dave Levin † , Bruce Maggs ‡ , Alan Mislove*, Aaron Schulman § , Christo Wilson* *Northeastern University † University of Maryland § Stanford University ‡ Duke University and Akamai Technologies

  2. Public Key Infrastructures (PKIs) How can users truly know with whom they are communicating? Browser Website 2

  3. Public Key Infrastructures (PKIs) How can users truly know with whom they are communicating? Browser Website 2

  4. Public Key Infrastructures (PKIs) How can users truly know with whom they are communicating? Browser Website 2

  5. Public Key Infrastructures (PKIs) How can users truly know with whom they are communicating? Browser Website Certificate Authority 2

  6. Public Key Infrastructures (PKIs) How can users truly know with whom they are communicating? Browser Website Vetting Certificate Authority 2

  7. 
 Public Key Infrastructures (PKIs) How can users truly know with whom they are communicating? Browser Website Certificate Authority The owner of is indeed BoA Certificate 2

  8. Public Key Infrastructures (PKIs) How can users truly know with whom they are communicating? Browser Website Certificate Certificate Certificate Authority 2

  9. Certificate revocation What happens when a certificate is no longer valid? Browser Website Certificate Certificate Authority 3

  10. Certificate revocation What happens when a certificate is no longer valid? Browser Website Certificate Attacker Certificate Certificate Authority 3

  11. Certificate revocation What happens when a certificate is no longer valid? Attacker Browser Certificate Certificate Authority 3

  12. Certificate revocation What happens when a certificate is no longer valid? Attacker Browser Certificate Certificate Certificate Authority 3

  13. Certificate revocation What happens when a certificate is no longer valid? Attacker Browser Certificate Certificate Please 
 Certificate Authority revoke ✗ Certificate Certificate 
 Revocation 3

  14. Certificate revocation What happens when a certificate is no longer valid? Attacker Browser Certificate Certificate Please 
 Certificate Authority revoke ✗ ✗ ✗ Certificate Certificate Certificate ✗ ✗ ✗ Certificate Certificate Certificate 3

  15. Certificate revocation What happens when a certificate is no longer valid? Attacker Browser Certificate Certificate Periodically pull / query Please 
 Certificate Authority revoke (CRL) (OCSP) ✗ ✗ ✗ Certificate Certificate Certificate ✗ ✗ ✗ Certificate Certificate Certificate 3

  16. Certificate revocation What happens when a certificate is no longer valid? ✗ Attacker Browser ✗ Certificate Certificate Certificate Periodically pull / query Please 
 Certificate Authority revoke (CRL) (OCSP) ✗ ✗ ✗ Certificate Certificate Certificate ✗ ✗ ✗ Certificate Certificate Certificate 3

  17. Certificate revocation responsibilities ✗ Administrators must revoke certificates 
 Certificate when keys are compromised Certificate authorities must publish revocations 
 as quickly as possible Browsers must check revocation status 
 on each connection This talk: 
 Do these entities do what they need to do? 4

  18. Outline ✗ Website admin behavior Certificate e.g., what is the frequency of revocation? Certificate authorities behavior e.g., how CAs serve revocations? Client behavior e.g., do browsers check revocations? 5

  19. Dataset Rapid7 IPv4 scans 38M certs (~ 1 /wk for 18mos) 6

  20. Dataset 38M certs Non-CA Rapid7 IPv4 classify scans CA 38M certs (~ 1 /wk for 18mos) 1,946 certs 6

  21. Dataset 38M certs Non-CA Rapid7 IPv4 classify Leaf Set validate scans CA 5M valid certs 38M certs (~ 1 /wk for 18mos) 1,946 certs 6

  22. Dataset 38M certs Non-CA Rapid7 IPv4 classify Leaf Set validate scans CA 5M valid certs 38M certs (~ 1 /wk for 18mos) 1,946 certs Download revocation information daily 6

  23. How frequently are certificates revoked? Percentage of Fresh Certs 12.0 that are Revoked 10.0 8.0 6.0 4.0 2.0 0.0 01/14 03/14 05/14 07/14 09/14 11/14 01/15 03/15 Date 7

  24. How frequently are certificates revoked? Percentage of Fresh Certs 12.0 that are Revoked 10.0 8.0 6.0 4.0 2.0 0.0 01/14 03/14 05/14 07/14 09/14 11/14 01/15 03/15 Date Significant fraction of certificates revoked 
 1% in steady state; more than 8% after Heartbleed 7

  25. How frequently are certificates revoked? 0.006 Fraction of Alive Certs 0.005 that are Revoked 0.004 0.003 0.002 0.001 0.000 01/14 03/14 05/14 07/14 09/14 11/14 01/15 03/15 Date Over 0.5% advertised certificates are revoked 
 Website admins failed to update their servers 8

  26. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Certificate Certificate Authority ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate 9

  27. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Certificate Certificate Authority ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate 9

  28. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Certificate Certificate Authority ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate 9

  29. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate Certificate Authority 9

  30. Cost of obtaining CRLs 1 0.9 0.8 0.7 0.6 CDF 0.5 0.4 0.3 0.2 0.1 0 0.1 1 10 100 1000 10000 CRL Size (KB) 10

  31. Cost of obtaining CRLs 1 0.9 0.8 76MB Apple CRL 0.7 0.6 CDF 0.5 0.4 0.3 0.2 0.1 0 0.1 1 10 100 1000 10000 CRL Size (KB) 10

  32. Cost of obtaining CRLs 1 0.9 0.8 76MB Apple CRL 0.7 0.6 CDF 0.5 0.4 0.3 0.2 Raw 0.1 Weighted 0 0.1 1 10 100 1000 10000 CRL Size (KB) Most CRLs small, but large CRLs downloaded more often 
 Result: 50% of certs have CRLs larger than 45KB 10

  33. CRLs from different CAs Certificates Unique Avg. CRL CA CRLs size (KB) Total Revoked GoDaddy 322 1,050,014 277,500 1,184.0 RapidSSL 5 626,774 2,153 34.5 Comodo 30 447,506 7,169 517.6 PositiveSSL 3 415,075 8,177 441.3 Verisign 37 311,788 15,438 205.2 CAs use only a small number of CRLs 11

  34. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Authority 12

  35. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Certificate Authority 12

  36. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Certificate Certificate Authority 12

  37. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Certificate Certific / ✗ ✔ Certific Certificate Authority ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate 12

  38. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Certific / ✗ ✔ Certific Certificate Authority ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate 12

  39. OCSP prevalence with Revocation Information Fraction of New Certificates 1 0.95 0.9 0.85 0.8 0.75 CRL 0.7 OCSP 0.65 01/11 07/11 01/12 07/12 01/13 07/13 01/14 07/14 01/15 Date Certificate Issued 13

  40. OCSP prevalence with Revocation Information Fraction of New Certificates 1 0.95 0.9 RapidSSL begins supporting OCSP 0.85 0.8 0.75 CRL 0.7 OCSP 0.65 01/11 07/11 01/12 07/12 01/13 07/13 01/14 07/14 01/15 Date Certificate Issued OCSP now universally supported 13

  41. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Authority ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate 14

  42. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Authority ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate 14

  43. CRLs, OCSP , and OCSP Stapling Browser Website Certificate ✔ Certific Certificate Authority ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate 14

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

An End-to-End Measurement of Certificate Revocation in the Webs PKI Yabing Liu*, Will Tome*,

An End-to-End Measurement of Certificate Revocation in the Webs PKI Yabing Liu*, Will Tome*,

An End-to-End Measurement of Certificate Revocation in the Webs PKI Yabing Liu*, Will Tome*, Liang Zhang*, David Choffnes*, Dave Levin , Bruce Maggs , Alan Mislove*, Aaron Schulman , Christo Wilson* University of Maryland

1.32k views • 67 slides
Revocation Methods Explicit: CRL - Certificate Revocation List Sources: CRL-DP, indirect

Revocation Methods Explicit: CRL - Certificate Revocation List Sources: CRL-DP, indirect

Revocation Methods Explicit: CRL - Certificate Revocation List Sources: CRL-DP, indirect CRL, dynamic CRL-DP Delta-CRL, windowed CRL, etc. Certificate Revocation Tree (CRT) and other Authenticated Data Structures OCSP

745 views • 35 slides
Efficient, Scalable, and Resilient Vehicle-Centric Certificate Revocation List Distribution in

Efficient, Scalable, and Resilient Vehicle-Centric Certificate Revocation List Distribution in

Efficient, Scalable, and Resilient Vehicle-Centric Certificate Revocation List Distribution in VANETs Mohammad Khodaei and Panos Papadimitratos Networked Systems Security Group (NSS) www.ee.kth.se/nss Royal Institute of Technology (KTH)

700 views • 35 slides
Scalable Secret Key and Certificate Revocation List Distribution for Hierarchical Vehicular Ad-hoc

Scalable Secret Key and Certificate Revocation List Distribution for Hierarchical Vehicular Ad-hoc

Scalable Secret Key and Certificate Revocation List Distribution for Hierarchical Vehicular Ad-hoc Networks Kastuv M. Tuladhar Department of Computer Science University of South Dakota kastuv.tuladhar@coyotes.usd.edu November 20, 2018 Thesis

991 views • 68 slides
Lets Revoke Public key infrastructure prevents Man-in-the-Middle attacks Revocation protects

Lets Revoke Public key infrastructure prevents Man-in-the-Middle attacks Revocation protects

Lets Revoke Public key infrastructure prevents Man-in-the-Middle attacks Revocation protects clients from compromised certificates Without revocation, these attacks would go undetected 2 Certificate Revocation Lists (CRLs) Lists of

544 views • 27 slides
Scalable & Resilient Vehicle-Centric Certificate Revocation List Distri- bution in Vehicular

Scalable & Resilient Vehicle-Centric Certificate Revocation List Distri- bution in Vehicular

KTH ROYAL INSTITUTE OF TECHNOLOGY Scalable & Resilient Vehicle-Centric Certificate Revocation List Distri- bution in Vehicular Communication Systems Mohammad Khodaei and Panos Papadimitratos Networked Systems Security Group (NSS)

981 views • 52 slides
A Distributed A Distributed Online Certificate Status Protocol Online Certificate Status

A Distributed A Distributed Online Certificate Status Protocol Online Certificate Status

A Distributed A Distributed Online Certificate Status Protocol Online Certificate Status Protocol Satoshi Koga, Kouichi Sakurai Satoshi Koga Kyushu University, Japan Background Background Certificate Revocation Problem Certificate

349 views • 10 slides
RevCast : Fast, Private Certificate Revocation over FM radio Aaron Schulman Stanford University

RevCast : Fast, Private Certificate Revocation over FM radio Aaron Schulman Stanford University

RevCast : Fast, Private Certificate Revocation over FM radio Aaron Schulman Stanford University Dave Levin Neil Spring University of Maryland University of Maryland Authentication in the PKI Authentication in the PKI I want an

834 views • 81 slides
Certificates, Revocation and the new gTLD's Oh My! Dan Timpson sales@digicert.com

Certificates, Revocation and the new gTLD's Oh My! Dan Timpson sales@digicert.com

Certificates, Revocation and the new gTLD's Oh My! Dan Timpson sales@digicert.com www.digicert.com +1 (801) 877-2100 Focus What is a Certificate Authority? Current situation with gTLD's and internal names

246 views • 13 slides
Public Key Infrastructure Towards a reliable revocation status checking method Royal Holloway,

Public Key Infrastructure Towards a reliable revocation status checking method Royal Holloway,

Public Key Infrastructure Towards a reliable revocation status checking method Royal Holloway, University of London Keith Vella Licari Weekend Conference 2013 keith@vellalicari.com Agenda About me Project approach Certificate

446 views • 27 slides
Recommendation Overview KNOWLEDGE ACADEMIES REVOCATION APPEALS OCTOBER 28, 2019 Statutory Charge

Recommendation Overview KNOWLEDGE ACADEMIES REVOCATION APPEALS OCTOBER 28, 2019 Statutory Charge

Recommendation Overview KNOWLEDGE ACADEMIES REVOCATION APPEALS OCTOBER 28, 2019 Statutory Charge REVOCATIONS AND REVOCATION APPEALS The Revocation Decision Pursuant to T.C.A. 49-13-122(b), a charter school authorizer may revoke a

386 views • 35 slides
Fintech Certificate Fintech Certificate Fintech Certificate 2 Investment Case The AtonR

Fintech Certificate Fintech Certificate Fintech Certificate 2 Investment Case The AtonR

Fintech Certificate Fintech Certificate Fintech Certificate 2 Investment Case The AtonR Fintech Index is a long-only, USD-based, actively managed total return index. The pace of innovation in financial technology (Fintech) has been

616 views • 26 slides
Secure Path-Key Revocation for Symmetric Key Pre-distribution Schemes in Sensor Networks Tyler

Secure Path-Key Revocation for Symmetric Key Pre-distribution Schemes in Sensor Networks Tyler

Introduction & background Path-key-enabled attacks Secure path-key revocation Conclusions Secure Path-Key Revocation for Symmetric Key Pre-distribution Schemes in Sensor Networks Tyler Moore and Jolyon Clulow University of Cambridge

505 views • 22 slides
NEO PA/VA system EN 54 -16 Certificate No. 2426-CPR-105 PA/VA System EN 54 -16 Certificate No.

NEO PA/VA system EN 54 -16 Certificate No. 2426-CPR-105 PA/VA System EN 54 -16 Certificate No.

NEO PA/VA system EN 54 -16 Certificate No. 2426-CPR-105 PA/VA System EN 54 -16 Certificate No. 2426-CPR-105 NEO is an innovative Public Address and Voice Alarm system that allows an easy audio installation with just one piece of equipment.

326 views • 7 slides
Measurement There are two main systems of measurement: - The English system

Measurement There are two main systems of measurement: - The English system

4 - 1 Introduction Measurement is finding a number that shows the size or amount of something. Measurement is done using measuring tools. Measurement There are two main systems of measurement: - The

438 views • 4 slides
1 4/3/2015 AMEs In Your Area If You Decide to Renew Your Medical So Whats This Light Sport

1 4/3/2015 AMEs In Your Area If You Decide to Renew Your Medical So Whats This Light Sport

4/3/2015 New Plastic Pilot Certificate So, Where Do I Start? What we will cover today Your old paper certificate is no longer valid. What it takes to be PIC again Google Search: Replacement of Airmen Certificate What has

485 views • 35 slides
The Multi-Principal OS Construction of the Gazelle Web Browser Helen J. Wang, Chris Grier, Alex

The Multi-Principal OS Construction of the Gazelle Web Browser Helen J. Wang, Chris Grier, Alex

The Multi-Principal OS Construction of the Gazelle Web Browser Helen J. Wang, Chris Grier, Alex Moshchuk, Sam King, Piali Choudhury, Herman Venter Browser as an application platform Single stop for many computing needs banking,

850 views • 30 slides
Browser as Renderer W3C Paris, 2013 Adam Hyde Book Sprint Facilitator, Platform Designer

Browser as Renderer W3C Paris, 2013 Adam Hyde Book Sprint Facilitator, Platform Designer

Browser as Renderer W3C Paris, 2013 Adam Hyde Book Sprint Facilitator, Platform Designer www.adamhyde.net www.adamhyde.net Browser as Renderer www.adamhyde.net Browser as Renderer Book Sprints, zero to book in 3-5 days

225 views • 9 slides
Your Secrets Are Safe : How Browsers Explanations Impact Misconceptions About Private Browsing

Your Secrets Are Safe : How Browsers Explanations Impact Misconceptions About Private Browsing

Your Secrets Are Safe : How Browsers Explanations Impact Misconceptions About Private Browsing Mode Yuxi Wu, Panya Gupta, Miranda Wei, Yasemin Acar, Sascha Fahl, Blase Ur https://FancyWines.com 2 Yuxi Wu, Miranda Wei | Your Secrets Are

851 views • 51 slides
On the Effectiveness of Risk Prediction Based on Users Browsing Behavior Davide Canali* *, ,

On the Effectiveness of Risk Prediction Based on Users Browsing Behavior Davide Canali* *, ,

On the Effectiveness of Risk Prediction Based on Users Browsing Behavior Davide Canali* *, , Leyla Bilge Leyla Bilge, , Davide Balzarotti Davide Balzarotti Davide Canali EURECOM Software and System Security Group, France EURECOM Software

493 views • 24 slides
Fast and efficient Browser Identification with JavaScript Engine Fingerprinting Martin Mulazzani ,

Fast and efficient Browser Identification with JavaScript Engine Fingerprinting Martin Mulazzani ,

Fast and efficient Browser Identification with JavaScript Engine Fingerprinting Martin Mulazzani , Philipp Reschl, Manuel Leithner, Markus Huber, Edgar Weippl SBA Research Vienna, Austria Outline Motivation & Background JavaScript Engine

539 views • 33 slides
EPUB in the Browser Ben Walters Principle Software Engineering Lead at Microsoft

EPUB in the Browser Ben Walters Principle Software Engineering Lead at Microsoft

EPUB in the Browser Ben Walters Principle Software Engineering Lead at Microsoft ben.walters@microsoft.com Warm up: how many people Warm up: how many people Build EPUB Reading Systems? Warm up: how many people Build

883 views • 23 slides
and Privacy Protection Xianyi Gao*, Yulong Yang*, Huiqing Fu*, Janne Lindqvist*, Yang Wang+

and Privacy Protection Xianyi Gao*, Yulong Yang*, Huiqing Fu*, Janne Lindqvist*, Yang Wang+

Private Browsing: an Inquiry on Usability and Privacy Protection Xianyi Gao*, Yulong Yang*, Huiqing Fu*, Janne Lindqvist*, Yang Wang+ *Rutgers University +Syracuse University Published in WPES 2014 What is private browsing? Introduced in

632 views • 21 slides
to WebKit for Wayland G_MAXUINT64 /* default value */, G_PARAM_READABLE | G_PARAM_WRITABLE |

to WebKit for Wayland G_MAXUINT64 /* default value */, G_PARAM_READABLE | G_PARAM_WRITABLE |

static void _f_do_barnacle_install_properties(GObjectClass *gobject_class) { Browsers for the GParamSpec *pspec; /* Party code attribute */ pspec = g_param_spec_uint64 automotive: an introduction (F_DO_BARNACLE_CODE, "Barnacle

1.01k views • 26 slides

More recommend