{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,24]],"date-time":"2026-03-24T16:05:48Z","timestamp":1774368348703,"version":"3.50.1"},"publisher-location":"Cham","reference-count":35,"publisher":"Springer International Publishing","isbn-type":[{"value":"9783319414829","type":"print"},{"value":"9783319414836","type":"electronic"}],"license":[{"start":{"date-parts":[[2016,1,1]],"date-time":"2016-01-01T00:00:00Z","timestamp":1451606400000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"},{"start":{"date-parts":[[2016,1,1]],"date-time":"2016-01-01T00:00:00Z","timestamp":1451606400000},"content-version":"vor","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2016]]},"DOI":"10.1007\/978-3-319-41483-6_23","type":"book-chapter","created":{"date-parts":[[2016,7,1]],"date-time":"2016-07-01T11:09:11Z","timestamp":1467371351000},"page":"331-346","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":4,"title":["Whom You Gonna Trust? A Longitudinal Study on TLS Notary Services"],"prefix":"10.1007","author":[{"given":"Georg","family":"Merzdovnik","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Klaus","family":"Falb","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Martin","family":"Schmiedecker","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Artemios G.","family":"Voyiatzis","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Edgar","family":"Weippl","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2016,7,2]]},"reference":[{"key":"23_CR1","unstructured":"Alexa. Alexa top domains. \n                      http:\/\/www.alexa.com\/topsites"},{"key":"23_CR2","doi-asserted-by":"crossref","unstructured":"Bates, A., Pletcher, J., Nichols, T., Hollembaek, B., Butler, K.R.: Forced perspectives: evaluating an SSL trust enhancement at scale. In: Proceedings of the Conference on Internet Measurement Conference, IMC 2014, pp. 503\u2013510. ACM, New York (2014)","DOI":"10.1145\/2663716.2663759"},{"key":"23_CR3","unstructured":"CMU. Perspectives project (2016). \n                      http:\/\/www.perspectives-project.org\/"},{"key":"23_CR4","unstructured":"Cortesi, A.: mitmproxy, February 2016. \n                      https:\/\/mitmproxy.org\/"},{"key":"23_CR5","doi-asserted-by":"crossref","unstructured":"Dierks, T., Rescorla, E.: The Transport Layer Security (TLS) Protocol Version 1.2. RFC 5246 (Proposed Standard), August 2008. Updated by RFCs 5746, 5878, 6176","DOI":"10.17487\/rfc5246"},{"key":"23_CR6","doi-asserted-by":"crossref","unstructured":"Durumeric, Z., Adrian, D., Mirian, A., Bailey, M., Halderman, J.A.: A search engine backed by Internet-wide scanning. In: Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security, pp. 542\u2013553. ACM (2015)","DOI":"10.1145\/2810103.2813703"},{"key":"23_CR7","doi-asserted-by":"crossref","unstructured":"Durumeric, Z., Kasten, J., Bailey, M., Halderman, J. A.: Analysis of the HTTPS certificate ecosystem. In: Internet Measurement Conference (2013)","DOI":"10.1145\/2504730.2504755"},{"key":"23_CR8","unstructured":"Durumeric, Z., Wustrow, E., Halderman, J.A.: ZMap: fast Internet-wide scanning and its security applications. In: Usenix Security, vol. 2013 (2013)"},{"key":"23_CR9","unstructured":"Eckersley, P., Burns, J.: An observatory for the SSLiverse. Talk at Defcon 18 (2010)"},{"key":"23_CR10","doi-asserted-by":"crossref","unstructured":"Evans, C., Palmer, C., Sleevi, R.: Public key pinning extension for HTTP (HPKP). RFC 7469 (Draft) (2015)","DOI":"10.17487\/RFC7469"},{"key":"23_CR11","doi-asserted-by":"crossref","unstructured":"Fahl, S., Harbach, M., Muders, T., Baumg\u00e4rtner, L., Freisleben, B., Smith, M., Eve, W.: Mallory love Android: an analysis of Android SSL (in) security. In: Proceedings of the ACM Conference on Computer and Communications Security, pp. 50\u201361. ACM (2012)","DOI":"10.1145\/2382196.2382205"},{"key":"23_CR12","doi-asserted-by":"crossref","unstructured":"Fahl, S., Harbach, M., Perl, H., Koetter, M., Smith, M.: Rethinking SSL development in an appified world. In: Proceedings of the ACM SIGSAC Conference on Computer & Communications Security, pp. 49\u201360. ACM (2013)","DOI":"10.1145\/2508859.2516655"},{"issue":"1","key":"23_CR13","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1186\/s13635-014-0018-0","volume":"2015","author":"K-P Fuchs","year":"2015","unstructured":"Fuchs, K.-P., Herrmann, D., Micheloni, A., Federrath, H.: Laribus: privacy-preserving detection of fake SSL certificates with a social P2P notary network. EURASIP J. Inf. Secur. 2015(1), 1\u201317 (2015)","journal-title":"EURASIP J. Inf. Secur."},{"key":"23_CR14","unstructured":"Graham, R.D.: Masscan: Mass IP port scanner (2014). \n                      https:\/\/github.com\/robertdavidgraham\/masscan"},{"key":"23_CR15","doi-asserted-by":"crossref","unstructured":"Hoffman, P., Schlyter, J.: The DNS-Based Authentication of Named Entities (DANE) Transport Layer Security (TLS) Protocol: TLSA. RFC 6698 (Proposed Standard), August 2012. Updated by RFC 7218","DOI":"10.17487\/rfc6698"},{"key":"23_CR16","doi-asserted-by":"crossref","unstructured":"Holz, R., Amann, J., Mehani, O., Wachs, M., K\u00e2afar, M.A.: TLS in the wild: an Internet-wide analysis of TLS-based protocols for electronic communication. CoRR, abs\/1511.00341 (2015)","DOI":"10.14722\/ndss.2016.23055"},{"key":"23_CR17","doi-asserted-by":"crossref","unstructured":"Holz, R., Braun, L., Kammenhuber, N., Carle, G.: The SSL landscape: a thorough analysis of the X.509 PKI using active and passive measurements. In: Proceedings of the ACM SIGCOMM Conference on Internet Measurement Conference, pp. 427\u2013444. ACM (2011)","DOI":"10.1145\/2068816.2068856"},{"key":"23_CR18","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"217","DOI":"10.1007\/978-3-642-33167-1_13","volume-title":"Computer Security \u2013 ESORICS 2012","author":"R Holz","year":"2012","unstructured":"Holz, R., Riedmaier, T., Kammenhuber, N., Carle, G.: X.509 forensics: detecting and localising the SSL\/TLS men-in-the-middle. In: Foresti, S., Yung, M., Martinelli, F. (eds.) ESORICS 2012. LNCS, vol. 7459, pp. 217\u2013234. Springer, Heidelberg (2012)"},{"key":"23_CR19","unstructured":"ICSI. ICSI certificate notary (2016). \n                      http:\/\/notary.icsi.berkeley.edu\/"},{"key":"23_CR20","unstructured":"Jones, R.: tofu:\/\/ - the web security protocol which should have been, October 2013. \n                      https:\/\/gun.io\/blog\/tofu-web-security\/"},{"issue":"12","key":"23_CR21","doi-asserted-by":"publisher","first-page":"17","DOI":"10.1109\/MC.2011.367","volume":"44","author":"N Leavitt","year":"2011","unstructured":"Leavitt, N.: Internet security under attack: the undermining of digital certificates. Computer 44(12), 17\u201320 (2011)","journal-title":"Computer"},{"key":"23_CR22","unstructured":"Lenovo. Superfish vulnerability, October 2015. \n                      https:\/\/support.lenovo.com\/at\/de\/product_security\/superfish"},{"key":"23_CR23","unstructured":"Marlinspike, M.: SSL and the future of authenticity. In: Black Hat USA (2011)"},{"key":"23_CR24","doi-asserted-by":"crossref","unstructured":"Mayer, W., Zauner, A., Schmiedecker, M., Huber, M.: No need for black chambers: testing TLS in the e-mail ecosystem at large. CoRR, abs\/1510.08646 (2015)","DOI":"10.1109\/ARES.2016.11"},{"key":"23_CR25","unstructured":"Kazantsev, M.: Convergence extra Firefox Add-on, April 2016. \n                      https:\/\/addons.mozilla.org\/en-US\/firefox\/addon\/convergence-extra"},{"key":"23_CR26","unstructured":"U. of Michigan. Scans.io - Internet-Wide scan data repository, February 2016. \n                      https:\/\/scans.io\/"},{"key":"23_CR27","unstructured":"Oltrogge, M., Acar, Y., Dechand, S., Smith, M., Fahl, S.: To pin or not to pin\u2013helping app. developers bullet proof their TLS connections. In: 24th USENIX Security Symposium (USENIX Security 2015), pp. 239\u2013254 (2015)"},{"key":"23_CR28","unstructured":"Schaefer, D.: Perspectives Firefox Add-on, April 2016. \n                      https:\/\/addons.mozilla.org\/en-US\/firefox\/addon\/perspectives\/"},{"key":"23_CR29","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"250","DOI":"10.1007\/978-3-642-27576-0_20","volume-title":"Financial Cryptography and Data Security","author":"C Soghoian","year":"2012","unstructured":"Soghoian, C., Stamm, S.: Certified lies: detecting and defeating government interception attacks against SSL (Short Paper). In: Danezis, G. (ed.) FC 2011. LNCS, vol. 7035, pp. 250\u2013259. Springer, Heidelberg (2012)"},{"key":"23_CR30","unstructured":"Syverson, P., Boyce, G.: Genuine onion: Simple, fast, flexible, and cheap website authentication. In: Proceedings of the 9th Workshop on Web 2.0 Security and Privacy (W2SP) (2015)"},{"key":"23_CR31","unstructured":"Thomas, L. P.: Response to concerns regarding eDellroot certificate (2015). \n                      http:\/\/en.community.dell.com\/dell-blogs\/direct2dell\/b\/direct2dell\/archive\/2015\/11\/23\/response-to-concerns-regarding-edellroot-certificate"},{"key":"23_CR32","unstructured":"Thoughtcrime Labs. Convergence (2016). \n                      http:\/\/www.convergence.io\/"},{"key":"23_CR33","unstructured":"Thoughtcrime Labs. Convergence notary protocol (2016). \n                      https:\/\/github.com\/moxie0\/Convergence\/wiki\/Notary-Protocol"},{"key":"23_CR34","unstructured":"Wendlandt, D., Andersen, D.G., Perrig, A.: Perspectives: Improving SSH-style host authentication with multi-path probing. In: USENIX Annual Technical Conference on Annual Technical Conference, ATC 2008, pp. 321\u2013334. USENIX Association, Berkeley (2008)"},{"key":"23_CR35","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"crossref","first-page":"304","DOI":"10.1007\/978-3-319-08506-7_16","volume-title":"Privacy Enhancing Technologies","author":"P Winter","year":"2014","unstructured":"Winter, P., K\u00f6wer, R., Mulazzani, M., Huber, M., Schrittwieser, S., Lindskog, S., Weippl, E.: Spoiled onions: exposing malicious tor exit relays. In: De Cristofaro, E., Murdoch, S.J. (eds.) PETS 2014. LNCS, vol. 8555, pp. 304\u2013331. Springer, Heidelberg (2014)"}],"container-title":["Lecture Notes in Computer Science","Data and Applications Security and Privacy XXX"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-41483-6_23","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2020,7,28]],"date-time":"2020-07-28T11:20:21Z","timestamp":1595935221000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-41483-6_23"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2016]]},"ISBN":["9783319414829","9783319414836"],"references-count":35,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-41483-6_23","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2016]]},"assertion":[{"value":"2 July 2016","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"This content has been made available to all.","name":"free","label":"Free to read"}]}}