browser interfaces and extended validation ssl
play

Browser Interfaces and Extended Validation SSL Certificates: An - PowerPoint PPT Presentation

Oct 17, 2023 •38 likes •378 views

Browser Interfaces and Extended Validation SSL Certificates: An Empirical Study Robert Biddle, P.C. van Oorschot, Andrew S. Patrick, Jennifer Sobey, Tara Whalen Carleton University, Ottawa, ON, Canada SSL Certificates & Cloud Computing

  1. Browser Interfaces and Extended Validation SSL Certificates: An Empirical Study Robert Biddle, P.C. van Oorschot, Andrew S. Patrick, Jennifer Sobey, Tara Whalen Carleton University, Ottawa, ON, Canada

  2. SSL Certificates & Cloud Computing NIST Information Technology Laboratory: “Effectively and Securely Using the Cloud Computing Paradigm” (July 2009) “Some key issues: trust , multi-tenancy, encryption , compliance” “Security and data privacy concerns are the two critical barriers to adopting cloud computing” - includes data encryption in transit (e.g., to data storage services) over SSL

  3. Open Letter to Google Re: “Ensuring adequate security in Google’s cloud based services” • encryption is not enabled by default for information transmitted by users of Google Mail, Docs, or Calendar • reasoning: performance issues; choice to enable is left up to users “If Google believes that encryption and protection from hackers is a choice that should be left up to users, the company must do a better job of informing them of the risks so that they are equipped to make this choice...the sparse information describing encryption options is hidden, and presented in terms that few members of the general public will understand.”

  4. Usable security issues in the cloud as highlighted in letter to Google data protection is critical in many web-based services information about data protection is often hidden or confusing to non-technical users similar usability problems arise in the SSL certificates used on the web servers providing these services

  5. Certificate Usability Problems failure to consider target user (non-expert) entangling identity with confidentiality poorly-conveyed certificate information 5

  6. Overly Technical Terminology: Firefox 3 6

  7. Lengthy Messages: Google Chrome 7

  8. Confusing Wording: Opera 9

  9. Entangling Site Identity and Confidentiality data sent over SSL channel: https and lock used as indicators website identity and channel encryption are often conflated studies (e.g., Dhamija et al., 2006) have shown that users associate lock with “being safe” what if user is sending encrypted data to unknown or untrusted party?

  10. Complicating the Issue: EV Certificates “Extended Validation” certificates: response to phishing and fraud introduced by CA/Browser forum (CAs and browser vendors) some requirements for obtaining EV cert (e.g., from Verisign): must be registered entity (not an individual) confirmed physical existence/business presence letter proving requestor is authorized by company to obtain cert at least $1000 10

  11. Complicating the Issue: EV Certificates now there are four grades of certificates for users to keep track of none; self-signed; basic SSL; EV SSL how can users distinguish and interpret differences in certificate types? do EV certificates “downgrade” the other types?

  12. Proposed Certificate Designs we reviewed existing certificate designs and their problems we created a new set of experimental designs for evaluation tried to make messages clear, short, and informative avoided “secure”; “encryption”; “certification authority” separated identity and confidentiality elements added icons for visual identification of elements

  13. Example Design: EV certificate

  15. User Study on Certificates: Overview We evaluated certificate designs, in order to: better understand which interface details users comprehend determine how easily users distinguish identity from encryption Study with 40 participants compared proposed design with IE 7 certificates sample questions: “Who does this web site belong to? Please rate how certain you are on a 1-7 scale.” 15

  16. Example IE 7 certificate (EV)

  17. Self-signed Basic

  18. User Study: Method recruited on university campus (email lists, posters) participants needed to be experienced with web browsing, have normal color vision faculty, staff and students all eligible 40 participants: 13 male, 27 female, aged 18-59 55% were students; 45% were staff (primarily in administration) 78% used online banking (study used a simulated online bank scenario)

  19. User Study: Materials within-subjects design with two different sets of certificates: alternative design and Internet Explorer 7 showed designs for four certificate types: no certificate; self- signed; basic; EV IE has no design for “no certificate”: showed seven images in all counterbalanced: half the participants saw IE first, half saw alternative randomized order of certificate type (e.g., self-signed, EV...) shown participants answered questions while viewing images

  20. Finding and Understanding Certificate Information on 7-point scales, indicate how easy it was to find and to understand • web site ownership information (who owns this web site?) • whether or not data was safe from interception in transit improvements shown for alternative design (statistically significant): ownership information rated as easier to find for both self-signed and basic certificates information about data safety in transit rated as easier to find for basic and EV certs information about data safety in transit rated as easier to understand for basic and EV certs

  21. Technical terminology technical language shown to be an impediment to understanding protection of data in transit “I don’t know if my information is safe, because I don’t know what ‘encrypted’ means.”

  22. Confidence in Ownership and Data Safety on 7-point scales, indicate how certain you are about • web site ownership information (who owns this web site?) • whether or not data was safe from interception in transit improvements shown for alternative design (statistically significant): for safety of data in transit: for self-signed and basic certs, participants were more certain about the safety information

  23. Accuracy of Security Assessment asked participants “Is data sent to this web site safe from interception in transit?” [avoided using the word “encrypted”] our interpretation: encryption means “safe in transit” for self-signed: 26/40 participants viewing alternative design said “yes” [correct] 2/40 participants viewing IE design said “yes” for EV: 38/40 participants viewing alternative design said “yes” [correct] 29/40 participants viewing IE design said “yes”

  24. Willingness to Enter Bank Information on 7-point scale, indicate how likely you are to enter your bank account number and password, if this was your bank for self-signed: likelier to enter information in alternative design however, likelihood still very low: 1.10 for IE, 1.80 for alternative, where 1 = “not at all likely”

  25. Opinions about Icons participants rated the icons in each design: how well they matched the text that they accompanied note that alternative icons remained static throughout: text changed two cases where alternative design rated lower than IE

  26. EV cert: for alternative design, the identity icon (head w/question mark) rating was poorest for EV: thought to be incongruous with high identity confidence

  27. self-signed: alternative privacy icon rated lower than IE icon: IE icon rated high, because self-signed message is very negative (warning)

  28. Interface Preferences two sets of designs (alternative, IE): overall, which design was easier to understand gave more confidence in web site ownership gave more confidence in safety of data in transit which design was preferred overall alternative design chosen in the first three aspects but not the fourth likely: aesthetic grounds (colour); familiarity with Windows/IE design

  29. Discussion modest re-design led to improvements in user understanding, ease of finding information better refinement of overall visual design could lead to improvements but: overall, are we working with a flawed basic model? requires more than simple adjustments

  30. Self-Signed & Safety of Data in Transit question: is data safe in transit in the case of self-signed certificates? if interpreted in end-to-end scenario – safe from eavesdropping – then yes, this is true however, could be interpreted as safe at the endpoint as well (“is the other party trustworthy?”)—but this is not fulfilled by encryption majority of people thought IE self-signed message indicated that data was not safe in transit “This may indicate an attempt to...intercept any data you send to the server” : choice of wording suggests insecurity in transit

  31. Self-signed Certificates participants were confused by the self-signed case in alternative design: how can there be private transmission to an untrusted party? These concepts seen as incongruous IE’s self-signed message is highly negative, acting as a warning: is there little room for legitimate use of this cert? options such as Wendlandt et al.’s Perspectives (2008) could be helpful here: “trust on first use” systems network of notaries for checking site’s public key; keeps record of key over time (i.e., has key changed recently -- is it reliable?)

  32. EV Certificates if self-signed certificates are downgraded, what about basic (domain-validated) certificates? seen as inferior to EV certs? Firefox 3 states web site is “run by (unknown)” for basic certificate, which looks like a warning where does this leave small business owners, individuals?

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Breaking the Myths of Extended Validation SSL Certificates Alexander Sotirov phmsecurity.com

Breaking the Myths of Extended Validation SSL Certificates Alexander Sotirov phmsecurity.com

BlackHat Briefings, 2009 Breaking the Myths of Extended Validation SSL Certificates Alexander Sotirov phmsecurity.com Mike Zusman intrepidusgroup.com Introduction Chosen-prefix MD5 collisions allowed us to create a rogue Certificate

493 views • 37 slides
Formal Co-Validation of Low-Level Hardware/Software Interfaces Alex Horn 1 Michael Tautschnig 1

Formal Co-Validation of Low-Level Hardware/Software Interfaces Alex Horn 1 Michael Tautschnig 1

Formal Co-Validation of Low-Level Hardware/Software Interfaces Alex Horn 1 Michael Tautschnig 1 Celina Val 2 Lihao Liang 1 Tom Melham 1 Jim Grundy 3 Daniel Kroening 1 1 University of Oxford 2 University of British Columbia 3 Intel Corporation

719 views • 36 slides
CSSE 220 Interfaces and Polymorphism Check out Interfaces from SVN Interfaces What, When,

CSSE 220 Interfaces and Polymorphism Check out Interfaces from SVN Interfaces What, When,

CSSE 220 Interfaces and Polymorphism Check out Interfaces from SVN Interfaces What, When, Why, How? What: Code Structure used to express operations that multiple class have in common No method implementations No fields

611 views • 12 slides
T Topic 7 i 7 Interfaces and Abstract Interfaces and Abstract Classes Interfaces Interfaces

T Topic 7 i 7 Interfaces and Abstract Interfaces and Abstract Classes Interfaces Interfaces

T Topic 7 i 7 Interfaces and Abstract Interfaces and Abstract Classes Interfaces Interfaces I prefer Agassiz in the abstract, rather than in the concrete. CS 307 Fundamentals of CS 307 Fundamentals of 1 2 Computer Science

325 views • 10 slides
DEVELOPMENT AND VALIDATION OF A 2D TURBULENT MIX MODEL David L Youngs AWE, Aldermaston UK 8th

DEVELOPMENT AND VALIDATION OF A 2D TURBULENT MIX MODEL David L Youngs AWE, Aldermaston UK 8th

DEVELOPMENT AND VALIDATION OF A 2D TURBULENT MIX MODEL David L Youngs AWE, Aldermaston UK 8th IWPCT M Pasadena, December 2001 Problems of interest Compressible flow with interfaces between fluids of widely differing densities. High

497 views • 25 slides
React A JavaScript library for building user interfaces What is React? JavaScript library

React A JavaScript library for building user interfaces What is React? JavaScript library

React A JavaScript library for building user interfaces What is React? JavaScript library created by Facebook Open source Runs on Node.js and renders in the browser Why use React? Declarative Modular Stateful

380 views • 17 slides
Form Validation 1 CS380 What is form validation? 2 validation: ensuring that form's values

Form Validation 1 CS380 What is form validation? 2 validation: ensuring that form's values

Form Validation 1 CS380 What is form validation? 2 validation: ensuring that form's values are correct some types of validation: preventing blank values (email address) ensuring the type of values integer, real number,

284 views • 24 slides
Data Mining II Model Validation Heiko Paulheim Why Model Validation? We have seen so far

Data Mining II Model Validation Heiko Paulheim Why Model Validation? We have seen so far

Data Mining II Model Validation Heiko Paulheim Why Model Validation? We have seen so far Various metrics (e.g., accuracy, F-measure, RMSE, ) Evaluation protocol setups Split Validation Cross Validation Special

1.04k views • 55 slides
Detecting the ghost in the browser: Real time detection of drive-by infections Thijs Kinkhorst

Detecting the ghost in the browser: Real time detection of drive-by infections Thijs Kinkhorst

Introduction Lab setup and dataset composition Analysis of patterns Detection method Validation Conclusion Detecting the ghost in the browser: Real time detection of drive-by infections Thijs Kinkhorst Michael van Kleij 1 July 2009 T.

318 views • 20 slides
Chapter 5 Analysis: Four Level for Validation Vis/Visual Analytics, Chap 5 Validation 1 CGGM

Chapter 5 Analysis: Four Level for Validation Vis/Visual Analytics, Chap 5 Validation 1 CGGM

Chapter 5 Analysis: Four Level for Validation Vis/Visual Analytics, Chap 5 Validation 1 CGGM Lab., CS Dept., NCTU Jung Hong Chuang Contents Why Validate? Validation Approaches Domain Why is Validation Abstraction

724 views • 47 slides
12. Application program interfaces (APIs) XML documents are text files in principle no

12. Application program interfaces (APIs) XML documents are text files in principle no

12. Application program interfaces (APIs) XML documents are text files in principle no special APIs are required. However, for example parsing and validation are tasks needed in almost any application. Predefined class libraries

605 views • 38 slides
UMBC A B M A L T F O U M B C I M Y O R T 1 (May 6, 2002) I E S R C E O

UMBC A B M A L T F O U M B C I M Y O R T 1 (May 6, 2002) I E S R C E O

Systems Design and Programming Bus Interface CMPE 310 Bus Interfaces Different types of buses: ISA (Industry Standard Architecture) EISA (Extended ISA) VESA (Video Electronics Standards Association, VL Bus) PCI (Periheral

545 views • 20 slides
Browser and Network request Browser website CS 4803 reply Network OS Computer and Network

Browser and Network request Browser website CS 4803 reply Network OS Computer and Network

Browser and Network request Browser website CS 4803 reply Network OS Computer and Network Security Hardware Alexandra (Sasha) Boldyreva Browser sends requests May reveal private information (in forms, cookies) Web security.

517 views • 7 slides
Extended Project Qualification Introduction What is an Extended Project? What does an

Extended Project Qualification Introduction What is an Extended Project? What does an

Extended Project Qualification Introduction What is an Extended Project? What does an Extended Project involve? What value does the Extended Project have? How does the Extended Project operate at St Aidans? What sort of

296 views • 17 slides
Interfaces Interfaces interface : A list of methods that a class promises to implement.

Interfaces Interfaces interface : A list of methods that a class promises to implement.

Interfaces Interfaces interface : A list of methods that a class promises to implement. Interfaces give you an is-a relationship without code sharing. Only method stubs in the interface Allows object with no common ancestor to act

268 views • 13 slides
Capital Quality Validation Webinar Sept. 17, 2020 Agenda Validation Overview

Capital Quality Validation Webinar Sept. 17, 2020 Agenda Validation Overview

Capital Quality Validation Webinar Sept. 17, 2020 Agenda Validation Overview Validation Timeline Authorized Representative Validation Process How to Log In to QuickBase How to Reset Your Password How to

451 views • 43 slides
Towards Privacy Standards Based on Empirical Data Serge Egelman Erika McCallister 2 Previous

Towards Privacy Standards Based on Empirical Data Serge Egelman Erika McCallister 2 Previous

Towards Privacy Standards Based on Empirical Data Serge Egelman Erika McCallister 2 Previous Privacy Standards P3P had highly granular privacy options Major web browsers supported it >25% of the most popular websites supported

446 views • 8 slides
HECKSCHER-OHLIN MODEL CONTINUED EMPIRICAL EVIDENCE FACTOR CONTENT OF TRADE General idea: by

HECKSCHER-OHLIN MODEL CONTINUED EMPIRICAL EVIDENCE FACTOR CONTENT OF TRADE General idea: by

ECO 352 Spring 2010 No. 9 Mar. 2 HECKSCHER-OHLIN MODEL CONTINUED EMPIRICAL EVIDENCE FACTOR CONTENT OF TRADE General idea: by trading goods, countries are indirectly trading the factors that are contained in the production of those

819 views • 14 slides
Stat 5102 Lecture Slides: Deck 1 Empirical Distributions, Exact Sampling Distributions,

Stat 5102 Lecture Slides: Deck 1 Empirical Distributions, Exact Sampling Distributions,

Stat 5102 Lecture Slides: Deck 1 Empirical Distributions, Exact Sampling Distributions, Asymptotic Sampling Distributions Charles J. Geyer School of Statistics University of Minnesota 1 Empirical Distributions The empirical distribution

1.43k views • 123 slides
Empirical Study of the Benefits of Overparameterization in Learning Latent Variable Models

Empirical Study of the Benefits of Overparameterization in Learning Latent Variable Models

Empirical Study of the Benefits of Overparameterization in Learning Latent Variable Models Rares-Darius Buhai 1 , Yoni Halpern 2 , Yoon Kim 3 , Andrej Risteski 4 , David Sontag 1 1 MIT, 2 Google, 3 Harvard, 4 CMU Overparameterization = training a

395 views • 21 slides
Neither Snow Nor Rain Nor MITM... An Empirical Analysis of Email Delivery Security Zakir

Neither Snow Nor Rain Nor MITM... An Empirical Analysis of Email Delivery Security Zakir

Neither Snow Nor Rain Nor MITM... An Empirical Analysis of Email Delivery Security Zakir Durumeric, David Adrian, Ariana Mirian, James Kasten, Kurt Thomas, Vijay Eranti, Nicholas Lidzborski, Elie Bursztein, Michael Bailey, J. Alex

522 views • 33 slides
The Nature of Econometrics and Economic Data Steps in an Empirical Analysis The Structure of

The Nature of Econometrics and Economic Data Steps in an Empirical Analysis The Structure of

What is Econometrics? Why Study Econometrics? The Nature of Econometrics and Economic Data Steps in an Empirical Analysis The Structure of Economic Caio Vigo Data Causality and the Notion of The University of Kansas Ceteris Paribus

654 views • 38 slides
Next Generation (Semi-)Empirical galaxy formation models - Matching individual galaxies Benjamin

Next Generation (Semi-)Empirical galaxy formation models - Matching individual galaxies Benjamin

Next Generation (Semi-)Empirical galaxy formation models - Matching individual galaxies Benjamin Moster (IoA/KICC) ! Simon White, Thorsten Naab (MPA), Rachel Somerville (Rutgers), Frank van den Bosch (Yale), Andrea Macci (MPIA) 1

474 views • 19 slides
Software Architecture Lab. Department of Information Systems University of Haifa Software

Software Architecture Lab. Department of Information Systems University of Haifa Software

Mind the Gap and Find Common Ground: Empirical Research in Multiple Firms Naomi Unkelos-Shpigel Irit Hadar Software Architecture Lab. Department of Information Systems University of Haifa Software Architecture Lab. Agenda

406 views • 11 slides

More recommend