{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,9,11]],"date-time":"2024-09-11T18:26:24Z","timestamp":1726079184442},"publisher-location":"Cham","reference-count":30,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783030429201"},{"type":"electronic","value":"9783030429218"}],"license":[{"start":{"date-parts":[[2020,1,1]],"date-time":"2020-01-01T00:00:00Z","timestamp":1577836800000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2020]]},"DOI":"10.1007\/978-3-030-42921-8_14","type":"book-chapter","created":{"date-parts":[[2020,4,3]],"date-time":"2020-04-03T11:05:45Z","timestamp":1585911945000},"page":"246-259","update-policy":"http:\/\/dx.doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":4,"title":["Elaphurus: Ensemble Defense Against Fraudulent Certificates in TLS"],"prefix":"10.1007","author":[{"given":"Bingyu","family":"Li","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Wei","family":"Wang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Lingjia","family":"Meng","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jingqiang","family":"Lin","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Xuezhong","family":"Liu","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Congli","family":"Wang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2020,3,13]]},"reference":[{"doi-asserted-by":"crossref","unstructured":"Alicherry, M., Keromytis, A.: DoubleCheck: multi-path verification against man-in-the-middle attacks. In: 14th IEEE ISCC (2009)","key":"14_CR1","DOI":"10.1109\/ISCC.2009.5202224"},{"doi-asserted-by":"crossref","unstructured":"Amann, J., et al.: Mission accomplished? HTTPS security after DigiNotar. In: 17th IMC (2017)","key":"14_CR2","DOI":"10.1145\/3131365.3131401"},{"unstructured":"Arends, R., et al.: IETF RFC 4033 - DNS security introduction and requirements","key":"14_CR3"},{"doi-asserted-by":"crossref","unstructured":"Basin, D., et al.: ARPKI: attack resilient public-key infrastructure. In: 21th ACM CCS (2014)","key":"14_CR4","DOI":"10.1145\/2660267.2660298"},{"doi-asserted-by":"crossref","unstructured":"Bates, A., et al.: CertShim: securing SSL certificate verification through dynamic linking. In: 21th ACM CCS (2014)","key":"14_CR5","DOI":"10.1145\/2660267.2660338"},{"unstructured":"Biilmann, M.: Be afraid of HTTP public key pinning (HPKP) (2016). \nhttps:\/\/www.smashingmagazine.com\/be-afraid-of-public-key-pinning","key":"14_CR6"},{"doi-asserted-by":"crossref","unstructured":"Cooper, D., et al.: IETF RFC 5280 - Internet X.509 public key infrastructure certificate and certificate revocation list (CRL) profile (2008)","key":"14_CR7","DOI":"10.17487\/rfc5280"},{"doi-asserted-by":"crossref","unstructured":"Evans, C., et al.: IETF RFC 7469 - Public key pinning extension for HTTP (2015)","key":"14_CR8","DOI":"10.17487\/RFC7469"},{"doi-asserted-by":"crossref","unstructured":"Hallam-Baker, P., Stradling, R.: IETF RFC 6844 - DNS certification authority authorization (CAA) resource record (2013)","key":"14_CR9","DOI":"10.17487\/rfc6844"},{"doi-asserted-by":"crossref","unstructured":"Hoffman, P., Schlyter, J.: IETF RFC 6698 - The DNS-based authentication of named entities (DANE) transport layer security (TLS) protocol: TLSA (2012)","key":"14_CR10","DOI":"10.17487\/rfc6698"},{"unstructured":"Internet Society: DANE test sites. \nhttps:\/\/www.internetsociety.org\/resources\/deploy360\/dane-test-sites","key":"14_CR11"},{"key":"14_CR12","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"329","DOI":"10.1007\/978-3-642-39884-1_28","volume-title":"Financial Cryptography and Data Security","author":"J Kasten","year":"2013","unstructured":"Kasten, J., Wustrow, E., Halderman, J.A.: CAge: taming certificate authorities by inferring restricted scopes. In: Sadeghi, A.-R. (ed.) FC 2013. LNCS, vol. 7859, pp. 329\u2013337. Springer, Heidelberg (2013). \nhttps:\/\/doi.org\/10.1007\/978-3-642-39884-1_28"},{"doi-asserted-by":"crossref","unstructured":"Kim, T., et al.: Accountable key infrastructure (AKI): a proposal for a public-key validation infrastructure. In: 22nd WWW (2013)","key":"14_CR13","DOI":"10.1145\/2488388.2488448"},{"unstructured":"Langley, A.: Public key pinning (2011). \nhttps:\/\/www.imperialviolet.org\/2011\/05\/04\/pinning.html","key":"14_CR14"},{"doi-asserted-by":"crossref","unstructured":"Laurie, B., et al.: IETF RFC 6962 - Certificate transparency (2013)","key":"14_CR15","DOI":"10.17487\/rfc6962"},{"unstructured":"Liu, X., Li, B., Wang, C., Lin, J.: An integrated security-enhanced PKI certificate verification scheme. Appl. Res. Comput. (2019). (in Chinese)","key":"14_CR16"},{"unstructured":"Marlinspike, M.: Trust assertions for certificate keys (2013). \nhttp:\/\/tack.io\/draft.html","key":"14_CR17"},{"unstructured":"Morton, B.: More Google fraudulent certificates (2014). \nhttps:\/\/www.entrust.com\/google-fraudulent-certificates\/","key":"14_CR18"},{"unstructured":"Oltrogge, M., et al.: To pin or not to pin: helping APP developers bullet proof their TLS connections. In: 24th USENIX Security (2015)","key":"14_CR19"},{"unstructured":"O\u2019Neill, M., et al.: TrustBase: an architecture to repair and strengthen certificate-based authentication. In: 26th USENIX Security (2017)","key":"14_CR20"},{"unstructured":"OpenSSL Software Foundation: OpenSSL: Cryptography and SSL\/TLS toolkit. \nhttps:\/\/www.openssl.org","key":"14_CR21"},{"unstructured":"Ristic, I.: Is HTTP public key pinning dead? (2016). \nhttps:\/\/blog.qualys.com\/ssllabs\/2016\/09\/06\/is-http-public-key-pinning-dead","key":"14_CR22"},{"key":"14_CR23","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"250","DOI":"10.1007\/978-3-642-27576-0_20","volume-title":"Financial Cryptography and Data Security","author":"C Soghoian","year":"2012","unstructured":"Soghoian, C., Stamm, S.: Certified lies: detecting and defeating government interception attacks against SSL (Short Paper). In: Danezis, G. (ed.) FC 2011. LNCS, vol. 7035, pp. 250\u2013259. Springer, Heidelberg (2012). \nhttps:\/\/doi.org\/10.1007\/978-3-642-27576-0_20"},{"doi-asserted-by":"crossref","unstructured":"Stark, E., et al.: Does certificate transparency break the web? Measuring adoption and error rate. In: 40th IEEE S&P (2019)","key":"14_CR24","DOI":"10.1109\/SP.2019.00027"},{"doi-asserted-by":"crossref","unstructured":"Szalachowski, P., et al.: PoliCert: secure and flexible TLS certificate management. In: 21th ACM CCS (2014)","key":"14_CR25","DOI":"10.1145\/2660267.2660355"},{"unstructured":"Tor project: anonymity online. \nhttps:\/\/www.torproject.org\/index.html","key":"14_CR26"},{"doi-asserted-by":"crossref","unstructured":"Vandersloot, B., et al.: Towards a complete view of the certificate ecosystem. In: 16th IMC (2016)","key":"14_CR27","DOI":"10.1145\/2987443.2987462"},{"unstructured":"Wendlandt, D., et al.: Perspectives: improving SSH-style host authentication with multi-path probing. In: USENIX ATC (2008)","key":"14_CR28"},{"unstructured":"Wikipedia: Dig for querying domain name system (DNS) servers. \nhttps:\/\/en.wikipedia.org\/wiki\/Dig_(command)","key":"14_CR29"},{"unstructured":"Wilson, K.: Distrusting new CNNIC certificates (2015). \nhttps:\/\/blog.mozilla.org\/security\/2015\/04\/02\/distrusting-new-cnnic-certificates\/","key":"14_CR30"}],"container-title":["Lecture Notes in Computer Science","Information Security and Cryptology"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-42921-8_14","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2020,4,3]],"date-time":"2020-04-03T11:12:52Z","timestamp":1585912372000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-030-42921-8_14"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2020]]},"ISBN":["9783030429201","9783030429218"],"references-count":30,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-42921-8_14","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2020]]},"assertion":[{"value":"13 March 2020","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"Inscrypt","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Information Security and Cryptology","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Nanjing","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"China","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2019","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"6 December 2019","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"8 December 2019","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"15","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"cisc2019","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/asclab.nuaa.edu.cn\/inscrypt2019\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}