Detection of Rogue Certificates from Trusted Certificate Authorities Using Deep Neural Networks-Reference-Cited by-同舟云学术

Detection of Rogue Certificates from Trusted Certificate Authorities Using Deep Neural Networks

Published:2016-09-17 Issue:2 Volume:19 Page:1-31
ISSN:2471-2566
Container-title:ACM Transactions on Privacy and Security
language:en
Short-container-title:ACM Trans. Priv. Secur.

Author:

Dong Zheng¹,Kane Kevin²,Camp L. Jean³

Affiliation:

1. Microsoft Corporation, Redmond, WA

2. Microsoft Research, Redmond, WA

3. Indiana University Bloomington, Bloomington, IN

Abstract

Rogue certificates are valid certificates issued by a legitimate certificate authority (CA) that are nonetheless untrustworthy; yet trusted by web browsers and users. With the current public key infrastructure, there exists a window of vulnerability between the time a rogue certificate is issued and when it is detected. Rogue certificates from recent compromises have been trusted for as long as weeks before detection and revocation. Previous proposals to close this window of vulnerability require changes in the infrastructure, Internet protocols, or end user experience. We present a method for detecting rogue certificates from trusted CAs developed from a large and timely collection of certificates. This method automates classification by building machine-learning models with Deep Neural Networks (DNN). Despite the scarcity of rogue instances in the dataset, DNN produced a classification method that is proven both in simulation and in the July 2014 compromise of the India CCA. We report the details of the classification method and illustrate that it is repeatable, such as with datasets obtained from crawling. We describe the classification performance under our current research deployment.

Funder

Google

Army Research Laboratory

National Science Foundation

Publisher

Association for Computing Machinery (ACM)

Subject

Safety, Risk, Reliability and Quality,General Computer Science

Link

https://dl.acm.org/doi/pdf/10.1145/2975591

Reference56 articles.

1. No attack necessary

2. ANSSI. 2013. Revocation of an IGC/A branch. http://www.ssi.gouv.fr/en/the-anssi/events/revocation-of-an- igc-a-branch-808.html. (Dec 2013). ANSSI. 2013. Revocation of an IGC/A branch. http://www.ssi.gouv.fr/en/the-anssi/events/revocation-of-an- igc-a-branch-808.html. (Dec 2013).

3. Detecting and resolving policy misconfigurations in access-control systems

Cited by 29 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Open RAN and RAN‐Core Convergence;Security and Privacy Vision in 6G;2023-07-21

2. Blockchain based Skill Verification System;2023 International Conference on Sustainable Computing and Smart Systems (ICSCSS);2023-06-14

3. Open RAN security: Challenges and opportunities;Journal of Network and Computer Applications;2023-05

4. AlgoCert: Adopt Non-transferable NFT for the Issuance and Verification of Educational Certificates using Algorand Blockchain;2022 IEEE Asia-Pacific Conference on Computer Science and Data Engineering (CSDE);2022-12-18

5. From the Beginning: Key Transitions in the First 15 Years of DNSSEC;IEEE Transactions on Network and Service Management;2022-12