Analyzing Proposals for Improving Authentication on the TLS/SSL-Protected Web View Full Text


Ontology type: schema:Chapter     


Chapter Info

DATE

2014

AUTHORS

Christopher W. Brown , Michael Jenkins

ABSTRACT

“Secure” web browsing with HTTPS uses TLS/SSL and X.509 certificates to provide authenticated, confidential communication between web clients and webservers. The authentication component of the system has a variety of weaknesses, which have led to a variety of proposals for improving the current environment. In this paper we survey, analyze, compare and contrast three prominent proposals. To do this, we attempt to systematically capture the properties one might require of such a system: authentication properties, forensics/privacy properties, usability properties, and pragmatic properties. Enumerating these properties is an important part of understanding these proposals and the nature of the authentication problem for the secure web. Finally, we offer a few conclusions and suggestions pertaining to these proposals, and possible future directions of research. More... »

PAGES

39-56

Book

TITLE

Security Standardisation Research

ISBN

978-3-319-14053-7
978-3-319-14054-4

Author Affiliations

Identifiers

URI

http://scigraph.springernature.com/pub.10.1007/978-3-319-14054-4_3

DOI

http://dx.doi.org/10.1007/978-3-319-14054-4_3

DIMENSIONS

https://app.dimensions.ai/details/publication/pub.1023713307


Indexing Status Check whether this publication has been indexed by Scopus and Web Of Science using the SN Indexing Status Tool
Incoming Citations Browse incoming citations for this publication using opencitations.net

JSON-LD is the canonical representation for SciGraph data.

TIP: You can open this SciGraph record using an external JSON-LD service: JSON-LD Playground Google SDTT

[
  {
    "@context": "https://springernature.github.io/scigraph/jsonld/sgcontext.json", 
    "about": [
      {
        "id": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/0804", 
        "inDefinedTermSet": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/", 
        "name": "Data Format", 
        "type": "DefinedTerm"
      }, 
      {
        "id": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/08", 
        "inDefinedTermSet": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/", 
        "name": "Information and Computing Sciences", 
        "type": "DefinedTerm"
      }
    ], 
    "author": [
      {
        "affiliation": {
          "alternateName": "National Security Agency", 
          "id": "https://www.grid.ac/institutes/grid.482831.4", 
          "name": [
            "National Security Agency / U. S. Naval Academy, Annapolis, MD, USA"
          ], 
          "type": "Organization"
        }, 
        "familyName": "Brown", 
        "givenName": "Christopher W.", 
        "id": "sg:person.07752030115.65", 
        "sameAs": [
          "https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.07752030115.65"
        ], 
        "type": "Person"
      }, 
      {
        "affiliation": {
          "alternateName": "National Security Agency", 
          "id": "https://www.grid.ac/institutes/grid.482831.4", 
          "name": [
            "National Security Agency, Maryland, USA"
          ], 
          "type": "Organization"
        }, 
        "familyName": "Jenkins", 
        "givenName": "Michael", 
        "id": "sg:person.011344771115.77", 
        "sameAs": [
          "https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.011344771115.77"
        ], 
        "type": "Person"
      }
    ], 
    "citation": [
      {
        "id": "https://doi.org/10.3115/100964.1138540", 
        "sameAs": [
          "https://app.dimensions.ai/details/publication/pub.1001813885"
        ], 
        "type": "CreativeWork"
      }, 
      {
        "id": "https://doi.org/10.1145/1719030.1719050", 
        "sameAs": [
          "https://app.dimensions.ai/details/publication/pub.1015095552"
        ], 
        "type": "CreativeWork"
      }
    ], 
    "datePublished": "2014", 
    "datePublishedReg": "2014-01-01", 
    "description": "\u201cSecure\u201d web browsing with HTTPS uses TLS/SSL and X.509 certificates to provide authenticated, confidential communication between web clients and webservers. The authentication component of the system has a variety of weaknesses, which have led to a variety of proposals for improving the current environment. In this paper we survey, analyze, compare and contrast three prominent proposals. To do this, we attempt to systematically capture the properties one might require of such a system: authentication properties, forensics/privacy properties, usability properties, and pragmatic properties. Enumerating these properties is an important part of understanding these proposals and the nature of the authentication problem for the secure web. Finally, we offer a few conclusions and suggestions pertaining to these proposals, and possible future directions of research.", 
    "editor": [
      {
        "familyName": "Chen", 
        "givenName": "Liqun", 
        "type": "Person"
      }, 
      {
        "familyName": "Mitchell", 
        "givenName": "Chris", 
        "type": "Person"
      }
    ], 
    "genre": "chapter", 
    "id": "sg:pub.10.1007/978-3-319-14054-4_3", 
    "inLanguage": [
      "en"
    ], 
    "isAccessibleForFree": false, 
    "isPartOf": {
      "isbn": [
        "978-3-319-14053-7", 
        "978-3-319-14054-4"
      ], 
      "name": "Security Standardisation Research", 
      "type": "Book"
    }, 
    "name": "Analyzing Proposals for Improving Authentication on the TLS/SSL-Protected Web", 
    "pagination": "39-56", 
    "productId": [
      {
        "name": "doi", 
        "type": "PropertyValue", 
        "value": [
          "10.1007/978-3-319-14054-4_3"
        ]
      }, 
      {
        "name": "readcube_id", 
        "type": "PropertyValue", 
        "value": [
          "70f9f38658cfd0616c6dcd359156f64bc6f85239340b452f56de8deaec1fd9ac"
        ]
      }, 
      {
        "name": "dimensions_id", 
        "type": "PropertyValue", 
        "value": [
          "pub.1023713307"
        ]
      }
    ], 
    "publisher": {
      "location": "Cham", 
      "name": "Springer International Publishing", 
      "type": "Organisation"
    }, 
    "sameAs": [
      "https://doi.org/10.1007/978-3-319-14054-4_3", 
      "https://app.dimensions.ai/details/publication/pub.1023713307"
    ], 
    "sdDataset": "chapters", 
    "sdDatePublished": "2019-04-15T20:05", 
    "sdLicense": "https://scigraph.springernature.com/explorer/license/", 
    "sdPublisher": {
      "name": "Springer Nature - SN SciGraph project", 
      "type": "Organization"
    }, 
    "sdSource": "s3://com-uberresearch-data-dimensions-target-20181106-alternative/cleanup/v134/2549eaecd7973599484d7c17b260dba0a4ecb94b/merge/v9/a6c9fde33151104705d4d7ff012ea9563521a3ce/jats-lookup/v90/0000000001_0000000264/records_8687_00000257.jsonl", 
    "type": "Chapter", 
    "url": "http://link.springer.com/10.1007/978-3-319-14054-4_3"
  }
]
 

Download the RDF metadata as:  json-ld nt turtle xml License info

HOW TO GET THIS DATA PROGRAMMATICALLY:

JSON-LD is a popular format for linked data which is fully compatible with JSON.

curl -H 'Accept: application/ld+json' 'https://scigraph.springernature.com/pub.10.1007/978-3-319-14054-4_3'

N-Triples is a line-based linked data format ideal for batch operations.

curl -H 'Accept: application/n-triples' 'https://scigraph.springernature.com/pub.10.1007/978-3-319-14054-4_3'

Turtle is a human-readable linked data format.

curl -H 'Accept: text/turtle' 'https://scigraph.springernature.com/pub.10.1007/978-3-319-14054-4_3'

RDF/XML is a standard XML format for linked data.

curl -H 'Accept: application/rdf+xml' 'https://scigraph.springernature.com/pub.10.1007/978-3-319-14054-4_3'


 

This table displays all metadata directly associated to this object as RDF triples.

84 TRIPLES      23 PREDICATES      29 URIs      20 LITERALS      8 BLANK NODES

Subject Predicate Object
1 sg:pub.10.1007/978-3-319-14054-4_3 schema:about anzsrc-for:08
2 anzsrc-for:0804
3 schema:author N3848ea822fb94557aaceb7877955411a
4 schema:citation https://doi.org/10.1145/1719030.1719050
5 https://doi.org/10.3115/100964.1138540
6 schema:datePublished 2014
7 schema:datePublishedReg 2014-01-01
8 schema:description “Secure” web browsing with HTTPS uses TLS/SSL and X.509 certificates to provide authenticated, confidential communication between web clients and webservers. The authentication component of the system has a variety of weaknesses, which have led to a variety of proposals for improving the current environment. In this paper we survey, analyze, compare and contrast three prominent proposals. To do this, we attempt to systematically capture the properties one might require of such a system: authentication properties, forensics/privacy properties, usability properties, and pragmatic properties. Enumerating these properties is an important part of understanding these proposals and the nature of the authentication problem for the secure web. Finally, we offer a few conclusions and suggestions pertaining to these proposals, and possible future directions of research.
9 schema:editor Nf2a6f9b48bcc427daebd8bb875e718cf
10 schema:genre chapter
11 schema:inLanguage en
12 schema:isAccessibleForFree false
13 schema:isPartOf N6fc7b2bcfe1240749a3732a1f17c00c6
14 schema:name Analyzing Proposals for Improving Authentication on the TLS/SSL-Protected Web
15 schema:pagination 39-56
16 schema:productId Nc5c8f6b5a7e9411789f3682717bb13a3
17 Ncd9ac8ffd57048dc8657e91798c0f203
18 Ne93e6856bd3345aba010224fc879cb2f
19 schema:publisher N7b50996ccdb345918d41e3fd0cfc414e
20 schema:sameAs https://app.dimensions.ai/details/publication/pub.1023713307
21 https://doi.org/10.1007/978-3-319-14054-4_3
22 schema:sdDatePublished 2019-04-15T20:05
23 schema:sdLicense https://scigraph.springernature.com/explorer/license/
24 schema:sdPublisher Nbb8c9189956f4a41a84a8686c574eb7e
25 schema:url http://link.springer.com/10.1007/978-3-319-14054-4_3
26 sgo:license sg:explorer/license/
27 sgo:sdDataset chapters
28 rdf:type schema:Chapter
29 N0415fa2a0931411d826c72386b690f59 schema:familyName Mitchell
30 schema:givenName Chris
31 rdf:type schema:Person
32 N3848ea822fb94557aaceb7877955411a rdf:first sg:person.07752030115.65
33 rdf:rest Na7e9d2aeed2c42d49c8fd52fe3b7b342
34 N3cd22957732346fb8ad43e703a194531 rdf:first N0415fa2a0931411d826c72386b690f59
35 rdf:rest rdf:nil
36 N6fc7b2bcfe1240749a3732a1f17c00c6 schema:isbn 978-3-319-14053-7
37 978-3-319-14054-4
38 schema:name Security Standardisation Research
39 rdf:type schema:Book
40 N7b50996ccdb345918d41e3fd0cfc414e schema:location Cham
41 schema:name Springer International Publishing
42 rdf:type schema:Organisation
43 Na7e9d2aeed2c42d49c8fd52fe3b7b342 rdf:first sg:person.011344771115.77
44 rdf:rest rdf:nil
45 Nac0a43b5a3014e91aed12182c9fa7579 schema:familyName Chen
46 schema:givenName Liqun
47 rdf:type schema:Person
48 Nbb8c9189956f4a41a84a8686c574eb7e schema:name Springer Nature - SN SciGraph project
49 rdf:type schema:Organization
50 Nc5c8f6b5a7e9411789f3682717bb13a3 schema:name dimensions_id
51 schema:value pub.1023713307
52 rdf:type schema:PropertyValue
53 Ncd9ac8ffd57048dc8657e91798c0f203 schema:name readcube_id
54 schema:value 70f9f38658cfd0616c6dcd359156f64bc6f85239340b452f56de8deaec1fd9ac
55 rdf:type schema:PropertyValue
56 Ne93e6856bd3345aba010224fc879cb2f schema:name doi
57 schema:value 10.1007/978-3-319-14054-4_3
58 rdf:type schema:PropertyValue
59 Nf2a6f9b48bcc427daebd8bb875e718cf rdf:first Nac0a43b5a3014e91aed12182c9fa7579
60 rdf:rest N3cd22957732346fb8ad43e703a194531
61 anzsrc-for:08 schema:inDefinedTermSet anzsrc-for:
62 schema:name Information and Computing Sciences
63 rdf:type schema:DefinedTerm
64 anzsrc-for:0804 schema:inDefinedTermSet anzsrc-for:
65 schema:name Data Format
66 rdf:type schema:DefinedTerm
67 sg:person.011344771115.77 schema:affiliation https://www.grid.ac/institutes/grid.482831.4
68 schema:familyName Jenkins
69 schema:givenName Michael
70 schema:sameAs https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.011344771115.77
71 rdf:type schema:Person
72 sg:person.07752030115.65 schema:affiliation https://www.grid.ac/institutes/grid.482831.4
73 schema:familyName Brown
74 schema:givenName Christopher W.
75 schema:sameAs https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.07752030115.65
76 rdf:type schema:Person
77 https://doi.org/10.1145/1719030.1719050 schema:sameAs https://app.dimensions.ai/details/publication/pub.1015095552
78 rdf:type schema:CreativeWork
79 https://doi.org/10.3115/100964.1138540 schema:sameAs https://app.dimensions.ai/details/publication/pub.1001813885
80 rdf:type schema:CreativeWork
81 https://www.grid.ac/institutes/grid.482831.4 schema:alternateName National Security Agency
82 schema:name National Security Agency / U. S. Naval Academy, Annapolis, MD, USA
83 National Security Agency, Maryland, USA
84 rdf:type schema:Organization
 




Preview window. Press ESC to close (or click here)


...