Explore a comprehensive analysis of private key sharing in the HTTPS ecosystem presented at the 23rd ACM Conference on Computer and Communications Security (CCS 2016). Delve into the research conducted by a team of experts from the University of Maryland, Northeastern University, and Duke University as they investigate the prevalence and implications of key sharing practices. Learn about the methodologies used to detect sharing, including domain equivalence and administrative relationships. Examine the findings related to key sharing among hosting providers and popular websites. Gain insights into the potential risks associated with this practice and its impact on the security of the HTTPS ecosystem. Understand the broader implications for internet security and the management of digital certificates in an increasingly interconnected online world.
Measurement and Analysis of Private Key Sharing in the HTTPS Ecosystem
Association for Computing Machinery (ACM) via YouTube
Overview
Syllabus
Introduction
Economies of Scale
The Big Picture
Whats wrong with sharing
Why this study
How to detect sharing
Domain equivalence
Administrative relationships
Key sharing
Hosting providers
Popular websites
Analysis
Management
Conclusion
Taught by
ACM CCS
Related Courses
-
Identity-Concealed Authenticated Encryption and Key Exchange
-
DPSense - Differentially Private Crowdsourced Spectrum Sensing
-
Breaking Web Applications Built On Top of Encrypted Data
-
ECDSA Key Extraction from Mobile Devices via Nonintrusive Physical Side Channels
-
A Comprehensive Formal Security Analysis of OAuth 2.0
-
The Misuse of Android Unix Domain Sockets and Security Implications
