{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,9,11]],"date-time":"2024-09-11T13:51:24Z","timestamp":1726062684239},"publisher-location":"Cham","reference-count":75,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783030372279"},{"type":"electronic","value":"9783030372286"}],"license":[{"start":{"date-parts":[[2019,1,1]],"date-time":"2019-01-01T00:00:00Z","timestamp":1546300800000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2019]]},"DOI":"10.1007\/978-3-030-37228-6_25","type":"book-chapter","created":{"date-parts":[[2019,12,16]],"date-time":"2019-12-16T10:00:05Z","timestamp":1576490405000},"page":"511-531","update-policy":"http:\/\/dx.doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":6,"title":["Ticket Transparency: Accountable Single Sign-On with Privacy-Preserving Public Logs"],"prefix":"10.1007","author":[{"given":"Dawei","family":"Chu","sequence":"first","affiliation":[]},{"given":"Jingqiang","family":"Lin","sequence":"additional","affiliation":[]},{"given":"Fengjun","family":"Li","sequence":"additional","affiliation":[]},{"given":"Xiaokun","family":"Zhang","sequence":"additional","affiliation":[]},{"given":"Qiongxiao","family":"Wang","sequence":"additional","affiliation":[]},{"given":"Guangqi","family":"Liu","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2019,12,13]]},"reference":[{"issue":"4","key":"25_CR1","doi-asserted-by":"publisher","first-page":"79:1","DOI":"10.1145\/3214303","volume":"51","author":"A Acar","year":"2018","unstructured":"Acar, A., Aksu, H., Uluagac, S., Conti, M.: A survey on homomorphic encryption schemes: theory and implementation. ACM Comput. Surv. 51(4), 79:1\u201379:35 (2018)","journal-title":"ACM Comput. Surv."},{"key":"25_CR2","doi-asserted-by":"crossref","unstructured":"Amann, J., Gasser, O., Scheitle, Q., Brent, L., Carle, G., Holz, R.: Mission accomplished? HTTPS security after DigiNotar. In: 17th Internet Measurement Conference (IMC), pp. 325\u2013340 (2017)","DOI":"10.1145\/3131365.3131401"},{"key":"25_CR3","doi-asserted-by":"crossref","unstructured":"Ateniese, G., et al.: Provable data possession at untrusted stores. In: 14th ACM Conference on Computer and Communication Security (CCS), pp. 598\u2013610 (2007)","DOI":"10.1145\/1315245.1315318"},{"key":"25_CR4","doi-asserted-by":"crossref","unstructured":"Barker, E., Barker, W., Burr, W., Polk, W., Smid, M.: SP 800-57 - Recommendation for key management - Part 1: General. Technical report, National Institute of Standards and Technology (2006)","DOI":"10.6028\/NIST.SP.800-57p1r2006"},{"key":"25_CR5","doi-asserted-by":"crossref","unstructured":"Beekman, J., Manferdelli, J., Wagner, D.: Attestation transparency: building secure Internet services for legacy clients. In: 11th ACM on Asia Conference on Computer and Communications Security (AsiaCCS), pp. 687\u2013698 (2016)","DOI":"10.1145\/2897845.2897895"},{"issue":"3","key":"25_CR6","doi-asserted-by":"publisher","first-page":"185","DOI":"10.1007\/s00145-002-0120-1","volume":"16","author":"M Bellare","year":"2003","unstructured":"Bellare, M., Namprempre, C., Pointcheval, D., Semanko, M.: The one-more-RSA-inversion problems and the security of Chaum\u2019s blind signature scheme. J. Cryptol. 16(3), 185\u2013215 (2003)","journal-title":"J. Cryptol."},{"issue":"7","key":"25_CR7","doi-asserted-by":"publisher","first-page":"422","DOI":"10.1145\/362686.362692","volume":"13","author":"B Bloom","year":"1970","unstructured":"Bloom, B.: Space\/time trade-offs in hash coding with allowable errors. Commun. ACM 13(7), 422\u2013426 (1970)","journal-title":"Commun. ACM"},{"key":"25_CR8","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"213","DOI":"10.1007\/3-540-44647-8_13","volume-title":"Advances in Cryptology \u2014 CRYPTO 2001","author":"D Boneh","year":"2001","unstructured":"Boneh, D., Franklin, M.: Identity-based encryption from the weil pairing. In: Kilian, J. (ed.) CRYPTO 2001. LNCS, vol. 2139, pp. 213\u2013229. Springer, Heidelberg (2001). \nhttps:\/\/doi.org\/10.1007\/3-540-44647-8_13"},{"key":"25_CR9","doi-asserted-by":"crossref","unstructured":"Bowers, K., Juels, A., Oprea, A.: Proofs of retrievability: theory and implementation. In: ACM Workshop on Cloud Computing Security (CCSW), pp. 43\u201354 (2009)","DOI":"10.1145\/1655008.1655015"},{"key":"25_CR10","doi-asserted-by":"crossref","unstructured":"Chase, M., Meiklejohn, S.: Transparency overlays and applications. In: 13th ACM Conference on Computer and Communications Security (CCS), pp. 168\u2013179 (2016)","DOI":"10.1145\/2976749.2978404"},{"key":"25_CR11","doi-asserted-by":"publisher","first-page":"199","DOI":"10.1007\/978-1-4757-0602-4_18","volume-title":"Advances in Cryptology","author":"D Chaum","year":"1983","unstructured":"Chaum, D.: Blind signatures for untraceable payments. In: Chaum, D., Rivest, R.L., Sherman, A.T. (eds.) Advances in Cryptology, pp. 199\u2013203. Springer, Boston (1983). \nhttps:\/\/doi.org\/10.1007\/978-1-4757-0602-4_18"},{"key":"25_CR12","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"256","DOI":"10.1007\/978-3-642-00468-1_15","volume-title":"Public Key Cryptography \u2013 PKC 2009","author":"SSM Chow","year":"2009","unstructured":"Chow, S.S.M.: Removing escrow from identity-based encryption. In: Jarecki, S., Tsudik, G. (eds.) PKC 2009. LNCS, vol. 5443, pp. 256\u2013276. Springer, Heidelberg (2009). \nhttps:\/\/doi.org\/10.1007\/978-3-642-00468-1_15"},{"key":"25_CR13","unstructured":"Comodo Group Inc.: Comodo report of incident (2011). \nhttps:\/\/www.comodo.com\/Comodo-Fraud-Incident-2011-03-23.html"},{"key":"25_CR14","doi-asserted-by":"crossref","unstructured":"Cooper, D., Santesson, S., Farrell, S., Boeyen, S., Housley, R., Polk, W.: IETF RFC 5280: Internet X.509 public key infrastructure certificate and certificate revocation list (CRL) profile (2008)","DOI":"10.17487\/rfc5280"},{"key":"25_CR15","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"120","DOI":"10.1007\/3-540-48184-2_8","volume-title":"Advances in Cryptology \u2014 CRYPTO \u201987","author":"Y Desmedt","year":"1988","unstructured":"Desmedt, Y.: Society and group oriented cryptography: a new concept. In: Pomerance, C. (ed.) CRYPTO 1987. LNCS, vol. 293, pp. 120\u2013127. Springer, Heidelberg (1988). \nhttps:\/\/doi.org\/10.1007\/3-540-48184-2_8"},{"key":"25_CR16","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"140","DOI":"10.1007\/978-3-319-45741-3_8","volume-title":"Computer Security \u2013 ESORICS 2016","author":"B Dowling","year":"2016","unstructured":"Dowling, B., G\u00fcnther, F., Herath, U., Stebila, D.: Secure logging schemes and certificate transparency. In: Askoxylakis, I., Ioannidis, S., Katsikas, S., Meadows, C. (eds.) ESORICS 2016. LNCS, vol. 9879, pp. 140\u2013158. Springer, Cham (2016). \nhttps:\/\/doi.org\/10.1007\/978-3-319-45741-3_8"},{"key":"25_CR17","unstructured":"Eckersley, P.: A Syrian man-in-the-middle attack against Facebook (2011). \nhttps:\/\/www.eff.org\/deeplinks\/2011\/05\/syrian-man-middle-against-facebook"},{"issue":"6","key":"25_CR18","doi-asserted-by":"publisher","first-page":"760","DOI":"10.1504\/IJMC.2008.019824","volume":"6","author":"K Elmufti","year":"2008","unstructured":"Elmufti, K., Weerasinghe, D., Rajarajan, M., Rakocevic, V.: Anonymous authentication for mobile single sign-on to protect user privacy. Int. J. Mob. Commun. 6(6), 760\u2013769 (2008)","journal-title":"Int. J. Mob. Commun."},{"key":"25_CR19","unstructured":"Erman, P., Kantarcioglu, M., Lin, Z., Ulusoy, H.: Preventing cryptographic key leakage in cloud virtual machines. In: 23rd USENIX Security Symposium (2014)"},{"issue":"4","key":"25_CR20","doi-asserted-by":"publisher","first-page":"329","DOI":"10.1515\/popets-2017-0052","volume":"2017","author":"Saba Eskandarian","year":"2017","unstructured":"Eskandarian, S., Messeri, E., Bonneau, J., Boneh, D.: Certificate transparency with privacy. In: 17th International Symposium on Privacy Enhancing Technologies (PETS), pp. 329\u2013344 (2017)","journal-title":"Proceedings on Privacy Enhancing Technologies"},{"key":"25_CR21","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"173","DOI":"10.1007\/978-3-319-76481-8_13","volume-title":"Passive and Active Measurement","author":"O Gasser","year":"2018","unstructured":"Gasser, O., Hof, B., Helm, M., Korczynski, M., Holz, R., Carle, G.: In log we trust: revealing poor security practices with certificate transparency logs and internet measurements. In: Beverly, R., Smaragdakis, G., Feldmann, A. (eds.) PAM 2018. LNCS, vol. 10771, pp. 173\u2013185. Springer, Cham (2018). \nhttps:\/\/doi.org\/10.1007\/978-3-319-76481-8_13"},{"key":"25_CR22","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"626","DOI":"10.1007\/978-3-642-38348-9_37","volume-title":"Advances in Cryptology \u2013 EUROCRYPT 2013","author":"R Gennaro","year":"2013","unstructured":"Gennaro, R., Gentry, C., Parno, B., Raykova, M.: Quadratic span programs and succinct NIZKs without PCPs. In: Johansson, T., Nguyen, P.Q. (eds.) EUROCRYPT 2013. LNCS, vol. 7881, pp. 626\u2013645. Springer, Heidelberg (2013). \nhttps:\/\/doi.org\/10.1007\/978-3-642-38348-9_37"},{"key":"25_CR23","unstructured":"Ghasemisharif, M., Ramesh, A., Checkoway, S., Kanich, C., Polakis, J.: O single sign-off, where art thou? An empirical analysis of single sign-on account hijacking and session management on the Web. In: 27th USENIX Security Symposium, pp. 1475\u20131492 (2018)"},{"key":"25_CR24","unstructured":"GlobalSign: Security incident report (2011). \nhttps:\/\/www.globalsign.com\/resources\/globalsign-security-incident-report.pdf"},{"key":"25_CR25","unstructured":"Google Inc.: Known logs (2018). \nhttp:\/\/www.certificate-transparency.org\/known-logs"},{"key":"25_CR26","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"430","DOI":"10.1007\/978-3-540-74143-5_24","volume-title":"Advances in Cryptology - CRYPTO 2007","author":"V Goyal","year":"2007","unstructured":"Goyal, V.: Reducing trust in the PKG in identity based cryptosystems. In: Menezes, A. (ed.) CRYPTO 2007. LNCS, vol. 4622, pp. 430\u2013447. Springer, Heidelberg (2007). \nhttps:\/\/doi.org\/10.1007\/978-3-540-74143-5_24"},{"key":"25_CR27","doi-asserted-by":"crossref","unstructured":"Goyal, V., Lu, S., Sahai, A., Waters, B.: Black-box accountable authority identity-based encryption. In: 15th ACM Conference on Computer and Communications Security (CCS), pp. 427\u2013436 (2008)","DOI":"10.1145\/1455770.1455824"},{"key":"25_CR28","unstructured":"Gudgin, M., et al.: W3C Recommendation - SOAP Version 1.2 Part 1: Messaging Framework, 2nd edn. (2007)"},{"key":"25_CR29","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"87","DOI":"10.1007\/978-3-319-54328-4_7","volume-title":"Passive and Active Measurement","author":"J Gustafsson","year":"2017","unstructured":"Gustafsson, J., Overier, G., Arlitt, M., Carlsson, N.: A first look at the CT landscape: certificate transparency logs in practice. In: Kaafar, M.A., Uhlig, S., Amann, J. (eds.) PAM 2017. LNCS, vol. 10176, pp. 87\u201399. Springer, Cham (2017). \nhttps:\/\/doi.org\/10.1007\/978-3-319-54328-4_7"},{"key":"25_CR30","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"470","DOI":"10.1007\/978-3-319-99073-6_23","volume-title":"Computer Security","author":"J Han","year":"2018","unstructured":"Han, J., Chen, L., Schneider, S., Treharne, H., Wesemeyer, S.: Anonymous single-sign-on for n designated services with traceability. In: Lopez, J., Zhou, J., Soriano, M. (eds.) ESORICS 2018. LNCS, vol. 11098, pp. 470\u2013490. Springer, Cham (2018). \nhttps:\/\/doi.org\/10.1007\/978-3-319-99073-6_23"},{"key":"25_CR31","doi-asserted-by":"crossref","unstructured":"Han, J., Mu, Y., Susilo, W., Yan, J.: Anonymous single-sign-on for $$n$$ designated services with traceability. In: 6th International Conference on Security and Privacy in Communication Networks (SecureComm), pp. 181\u2013198 (2010)","DOI":"10.1007\/978-3-642-16161-2_11"},{"key":"25_CR32","doi-asserted-by":"crossref","unstructured":"Houlihan, R., Du, X., Tan, C.-C., Wu, J., Guizani, M.: Auditing cloud service level agreement on VM CPU speed. In: IEEE International Conference on Communications (ICC), pp. 799\u2013803 (2014)","DOI":"10.1109\/ICC.2014.6883417"},{"key":"25_CR33","doi-asserted-by":"crossref","unstructured":"Jing, J., Liu, P., Feng, D., Xiang, J., Gao, N., Lin, J.: ARECA: a highly attack resilient certification authority. In: 1st ACM Workshop on Survivable and Self-Regenerative Systems (SSRS), pp. 53\u201363 (2003)","DOI":"10.1145\/1036921.1036927"},{"key":"25_CR34","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"436","DOI":"10.1007\/978-3-642-15317-4_27","volume-title":"Security and Cryptography for Networks","author":"A Kate","year":"2010","unstructured":"Kate, A., Goldberg, I.: Distributed private-key generators for identity-based cryptography. In: Garay, J.A., De Prisco, R. (eds.) SCN 2010. LNCS, vol. 6280, pp. 436\u2013453. Springer, Heidelberg (2010). \nhttps:\/\/doi.org\/10.1007\/978-3-642-15317-4_27"},{"key":"25_CR35","doi-asserted-by":"publisher","first-page":"333","DOI":"10.1016\/j.cose.2019.05.013","volume":"85","author":"MY Kubilay","year":"2019","unstructured":"Kubilay, M.Y., Kiraz, M.S., Mantar, H.A.: CertLedger: a new PKI model with certificate transparency based on blockchain. Comput. Secur. 85, 333\u2013352 (2019)","journal-title":"Comput. Secur."},{"key":"25_CR36","unstructured":"Langley, A.: Further improving digital certificate security (2013). \nhttps:\/\/security.googleblog.com\/2013\/12\/further-improving-digital-certificate.html"},{"key":"25_CR37","unstructured":"Laurie, B., Kasper, E.: Revocation transparency (2012). \nhttp:\/\/sump2.links.org\/files\/RevocationTransparency.pdf"},{"key":"25_CR38","doi-asserted-by":"crossref","unstructured":"Laurie, B., Langley, A., Kasper, E.: IETF RFC 6962 - certificate transparency (2014)","DOI":"10.17487\/rfc6962"},{"issue":"2","key":"25_CR39","doi-asserted-by":"publisher","first-page":"1499","DOI":"10.1109\/JSYST.2015.2471095","volume":"12","author":"T-F Lee","year":"2018","unstructured":"Lee, T.-F.: Provably secure anonymous single-sign-on authentication mechanisms using extended Chebyshev Chaotic Maps for distributed computer networks. IEEE Syst. J. 12(2), 1499\u20131505 (2018)","journal-title":"IEEE Syst. J."},{"key":"25_CR40","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"357","DOI":"10.1007\/978-3-319-40667-1_18","volume-title":"Detection of Intrusions and Malware, and Vulnerability Assessment","author":"W Li","year":"2016","unstructured":"Li, W., Mitchell, C.J.: Analysing the security of Google\u2019s implementation of OpenID connect. In: Caballero, J., Zurutuza, U., Rodr\u00edguez, R.J. (eds.) DIMVA 2016. LNCS, vol. 9721, pp. 357\u2013376. Springer, Cham (2016). \nhttps:\/\/doi.org\/10.1007\/978-3-319-40667-1_18"},{"issue":"1","key":"25_CR41","doi-asserted-by":"publisher","first-page":"25","DOI":"10.1109\/TNSM.2013.122613.130411","volume":"11","author":"Q Liu","year":"2014","unstructured":"Liu, Q., Wang, G., Wu, J.: Consistency as a service: auditing cloud consistency. IEEE Trans. Netw. Serv. Manag. 11(1), 25\u201335 (2014)","journal-title":"IEEE Trans. Netw. Serv. Manag."},{"key":"25_CR42","unstructured":"Lynn, B.: Stanford IBE library v0.7.2. \nhttps:\/\/github.com\/SEI-TTG\/id-based-encryption"},{"key":"25_CR43","doi-asserted-by":"crossref","unstructured":"Mainka, C., Mladenov, V., Schwenk, J.: Do not trust me: using malicious IdPs for analyzing and attacking single sign-on. In: 1st IEEE European Symposium on Security and Privacy (Euro S&P), pp. 321\u2013336 (2016)","DOI":"10.1109\/EuroSP.2016.33"},{"key":"25_CR44","doi-asserted-by":"crossref","unstructured":"Matsumoto, S., Steffen, S., Perrig, A.: CASTLE: CA signing in a touch-less environment. In: 32nd Annual Computer Security Applications Conference (ACSAC), pp. 546\u2013557 (2016)","DOI":"10.1145\/2991079.2991115"},{"key":"25_CR45","unstructured":"Melara, M., Blankstein, A., Bonneau, J., Felten, E., Freedman, M.: CONIKS: bringing key transparency to end users. In: 24th USENIX Security Symposium, pp. 383\u2013398 (2015)"},{"key":"25_CR46","unstructured":"Microsoft: MS01-017: Erroneous VeriSign-issued digital certificates pose spoofing hazard (2001). \nhttps:\/\/technet.microsoft.com\/library\/security\/ms01-017"},{"key":"25_CR47","unstructured":"Morton, B.: Public announcements concerning the security advisory (2013). \nhttps:\/\/www.entrust.com\/turktrust-unauthorized-ca-certificates"},{"key":"25_CR48","unstructured":"Morton, B.: More Google fraudulent certificates (2014). \nhttps:\/\/www.entrust.com\/google-fraudulent-certificates\/"},{"key":"25_CR49","unstructured":"Mozilla: Binary transparency (2017). \nhttps:\/\/wiki.mozilla.org\/Security\/Binary_Transparency"},{"key":"25_CR50","unstructured":"Nadalin, A., Kaler, C., Monzillo, R., Hallam-Baker, P.: OASIS standard - Web services security: SOAP message security 1.1 (2006)"},{"key":"25_CR51","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"186","DOI":"10.1007\/978-3-319-76481-8_14","volume-title":"Passive and Active Measurement","author":"C Nykvist","year":"2018","unstructured":"Nykvist, C., Sj\u00f6str\u00f6m, L., Gustafsson, J., Carlsson, N.: Server-side adoption of certificate transparency. In: Beverly, R., Smaragdakis, G., Feldmann, A. (eds.) PAM 2018. LNCS, vol. 10771, pp. 186\u2013199. Springer, Cham (2018). \nhttps:\/\/doi.org\/10.1007\/978-3-319-76481-8_14"},{"key":"25_CR52","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"121","DOI":"10.1007\/978-3-319-45741-3_7","volume-title":"Computer Security \u2013 ESORICS 2016","author":"R Peeters","year":"2016","unstructured":"Peeters, R., Pulls, T.: Insynd: improved privacy-preserving transparency logging. In: Askoxylakis, I., Ioannidis, S., Katsikas, S., Meadows, C. (eds.) ESORICS 2016. LNCS, vol. 9879, pp. 121\u2013139. Springer, Cham (2016). \nhttps:\/\/doi.org\/10.1007\/978-3-319-45741-3_7"},{"key":"25_CR53","unstructured":"Reiner, S.: Golden SAML: Newly discovered attack technique forges authentication to cloud apps"},{"key":"25_CR54","unstructured":"RSA Laboratories: PKCS #1 v2.2: RSA cryptography standard. Technical report, EMC Corporation (2012)"},{"key":"25_CR55","doi-asserted-by":"crossref","unstructured":"Ryan, M.: Enhanced certificate transparency and end-to-end encrypted mail. In: 21st ISOC Network and Distributed System Security Symposium (NDSS) (2014)","DOI":"10.14722\/ndss.2014.23379"},{"key":"25_CR56","unstructured":"Sakimura, N., Bradley, J., Jones, M., de\u00a0Medeiros, B., Chuck, M.: OpenID Connect Core 1.0 (2014). \nhttp:\/\/openid.net\/specs\/openid-connect-core-1_0.html"},{"key":"25_CR57","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"207","DOI":"10.1007\/3-540-45539-6_15","volume-title":"Advances in Cryptology \u2014 EUROCRYPT 2000","author":"V Shoup","year":"2000","unstructured":"Shoup, V.: Practical threshold signatures. In: Preneel, B. (ed.) EUROCRYPT 2000. LNCS, vol. 1807, pp. 207\u2013220. Springer, Heidelberg (2000). \nhttps:\/\/doi.org\/10.1007\/3-540-45539-6_15"},{"key":"25_CR58","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"381","DOI":"10.1007\/978-3-319-59870-3_22","volume-title":"Information Security and Privacy","author":"A Singh","year":"2017","unstructured":"Singh, A., Sengupta, B., Ruj, S.: Certificate transparency with enhancements and short proofs. In: Pieprzyk, J., Suriadi, S. (eds.) ACISP 2017. LNCS, vol. 10343, pp. 381\u2013389. Springer, Cham (2017). \nhttps:\/\/doi.org\/10.1007\/978-3-319-59870-3_22"},{"key":"25_CR59","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"250","DOI":"10.1007\/978-3-642-27576-0_20","volume-title":"Financial Cryptography and Data Security","author":"C Soghoian","year":"2012","unstructured":"Soghoian, C., Stamm, S.: Certified lies: detecting and defeating government interception attacks against SSL (short paper). In: Danezis, G. (ed.) FC 2011. LNCS, vol. 7035, pp. 250\u2013259. Springer, Heidelberg (2012). \nhttps:\/\/doi.org\/10.1007\/978-3-642-27576-0_20"},{"key":"25_CR60","unstructured":"Somorovsky, J., Mayer, A., Schwenk, J., Kampmann, M., Jensen, M.: On breaking SAML: be whoever you want to be. In: 21st USENIX Security Symposium, pp. 397\u2013412 (2012)"},{"key":"25_CR61","unstructured":"SSL Shopper: SSL certificate for mozilla.com issued without validation (2008). \nhttps:\/\/www.sslshopper.com\/article-ssl-certificate-for-mozilla.com-issued-without-validation.html"},{"key":"25_CR62","unstructured":"Start Commercial (StartCom) Limited: Critical event report (2008). \nhttps:\/\/blog.startcom.org\/wp-content\/uploads\/2009\/01\/ciritical-event-report-12-20-2008.pdf"},{"key":"25_CR63","doi-asserted-by":"crossref","unstructured":"Sun, S.-T., Beznosov, K.: The devil is in the (implementation) details: an empirical analysis of OAuth SSO systems. In: 19th ACM Conference on Computer and Communications Security (CCS), pp. 378\u2013390 (2012)","DOI":"10.1145\/2382196.2382238"},{"key":"25_CR64","unstructured":"VASCO Data Security International Inc.: DigiNotar reports security incident (2011). \nhttps:\/\/www.vasco.com\/about-vasco\/press\/2011\/news_diginotar_reports_security_incident.html"},{"key":"25_CR65","unstructured":"Walton, J.: Crypto++ library 7.0. \nhttps:\/\/cryptopp.com\/"},{"issue":"2","key":"25_CR66","doi-asserted-by":"publisher","first-page":"362","DOI":"10.1109\/TC.2011.245","volume":"62","author":"C Wang","year":"2013","unstructured":"Wang, C., Chow, S., Wang, Q., Ren, K., Lou, W.: Privacy-preserving public auditing for secure cloud storage. IEEE Trans. Comput. 62(2), 362\u2013375 (2013)","journal-title":"IEEE Trans. Comput."},{"key":"25_CR67","doi-asserted-by":"crossref","unstructured":"Wang, C., Wang, Q., Ren, K., Lou, W.: Privacy-preserving public auditing for data storage security in cloud computing. In: INFOCOM, pp. 525\u2013533 (2010)","DOI":"10.1109\/INFCOM.2010.5462173"},{"key":"25_CR68","doi-asserted-by":"crossref","unstructured":"Wang, H., Zhang, Y., Li, J., Gu, D.: The achilles heel of OAuth: a multi-platform study of OAuth-based authentication. In: 32nd Annual Computer Security Applications Conference (ACSAC), pp. 167\u2013176 (2016)","DOI":"10.1145\/2991079.2991105"},{"key":"25_CR69","doi-asserted-by":"crossref","unstructured":"Wang, H., et al.: Vulnerability assessment of OAuth implementations in Android applications. In: 31st Annual Computer Security Applications Conference (ACSAC), pp. 61\u201370 (2015)","DOI":"10.1145\/2818000.2818024"},{"key":"25_CR70","doi-asserted-by":"crossref","unstructured":"Wang, J., Wang, G., Susilo, W.: Anonymous single sign-on schemes transformed from group signatures. In: 5th International Conference on Intelligent Networking and Collaborative Systems (INCoS), pp. 560\u2013567 (2013)","DOI":"10.1109\/INCoS.2013.104"},{"key":"25_CR71","doi-asserted-by":"crossref","unstructured":"Wang, R., Chen, S., Wang, X.: Signing me onto your accounts through Facebook and Google: a traffic-guided security study of commercially deployed single-sign-on web services. In: 33rd IEEE Symposium on Security and Privacy (S&P), pp. 365\u2013379 (2012)","DOI":"10.1109\/SP.2012.30"},{"key":"25_CR72","unstructured":"Wang, R., Zhou, Y., Chen, S., Qadeer, S., Evans, D., Gurevich, Y.: Explicating SDKs: uncovering assumptions underlying secure authentication and authorization. In: 22nd USENIX Security Symposium, pp. 399\u2013414 (2013)"},{"key":"25_CR73","unstructured":"Wilson, K.: Distrusting new CNNIC certificates (2015). \nhttps:\/\/blog.mozilla.org\/security\/2015\/04\/02\/distrusting-new-cnnic-certificates\/"},{"key":"25_CR74","unstructured":"Zhou, Y., Evans, D.: SSOScan: automated testing of web applications for single sign-on vulnerabilities. In: 23rd USENIX Security Symposium, pp. 495\u2013510 (2014)"},{"key":"25_CR75","unstructured":"Zusman, M.: Criminal charges are not pursued: Hacking PKI (2009). \nhttps:\/\/www.defcon.org\/images\/defcon-17\/dc-17-presentations\/defcon-17-zusman-hacking_pki.pdf"}],"container-title":["Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering","Security and Privacy in Communication Networks"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-37228-6_25","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,12,16]],"date-time":"2019-12-16T10:03:24Z","timestamp":1576490604000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-030-37228-6_25"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019]]},"ISBN":["9783030372279","9783030372286"],"references-count":75,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-37228-6_25","relation":{},"ISSN":["1867-8211","1867-822X"],"issn-type":[{"type":"print","value":"1867-8211"},{"type":"electronic","value":"1867-822X"}],"subject":[],"published":{"date-parts":[[2019]]},"assertion":[{"value":"13 December 2019","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"SecureComm","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Security and Privacy in Communication Systems","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Orlando, VA","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"USA","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2019","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"23 October 2019","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"25 October 2019","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"15","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"securecomm2019","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"http:\/\/securecomm.org","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Single-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"easychair","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"149","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"38","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"18","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"26% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3,5","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"2","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"No","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}