{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,9]],"date-time":"2026-04-09T14:42:14Z","timestamp":1775745734742,"version":"3.50.1"},"reference-count":50,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","issue":"1","license":[{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"am","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"funder":[{"name":"National Science and Technology Innovation 2030 of China","award":["2020AAA0107700"],"award-info":[{"award-number":["2020AAA0107700"]}]},{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["62032021"],"award-info":[{"award-number":["62032021"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/100022963","name":"Key Research and Development Program of Zhejiang Province","doi-asserted-by":"publisher","award":["2019C03133"],"award-info":[{"award-number":["2019C03133"]}],"id":[{"id":"10.13039\/100022963","id-type":"DOI","asserted-by":"publisher"}]},{"name":"Key Laboratory of Zhejiang Province, China"},{"DOI":"10.13039\/501100008982","name":"National Science Foundation","doi-asserted-by":"publisher","award":["CNS-2127200"],"award-info":[{"award-number":["CNS-2127200"]}],"id":[{"id":"10.13039\/501100008982","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Trans. Dependable and Secure Comput."],"published-print":{"date-parts":[[2024,1]]},"DOI":"10.1109\/tdsc.2023.3255869","type":"journal-article","created":{"date-parts":[[2023,3,13]],"date-time":"2023-03-13T17:52:57Z","timestamp":1678729977000},"page":"419-433","source":"Crossref","is-referenced-by-count":11,"title":["On the Complexity of the Web\u2019s PKI: Evaluating Certificate Validation of Mobile Browsers"],"prefix":"10.1109","volume":"21","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-9018-1367","authenticated-orcid":false,"given":"Meng","family":"Luo","sequence":"first","affiliation":[{"name":"School of Cyber Science and Technology &#x0026; ZJU-Hangzhou Global Scientific and Technological Innovation Center, Zhejiang University, Hangzhou, Zhejiang, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-9764-7457","authenticated-orcid":false,"given":"Bo","family":"Feng","sequence":"additional","affiliation":[{"name":"School of Cybersecurity and Privacy, College of Computing, Georgia Institute of Technology, Atlanta, GA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Long","family":"Lu","sequence":"additional","affiliation":[{"name":"Khoury College of Computer Sciences, Northeastern University, Boston, MA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Engin","family":"Kirda","sequence":"additional","affiliation":[{"name":"Khoury College of Computer Sciences, Northeastern University, Boston, MA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-1969-2591","authenticated-orcid":false,"given":"Kui","family":"Ren","sequence":"additional","affiliation":[{"name":"School of Cyber Science and Technology &#x0026; ZJU-Hangzhou Global Scientific and Technological Innovation Center, Zhejiang University, Hangzhou, Zhejiang, China"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref1","article-title":"HTTPS Encryption on the Web","year":"2022"},{"key":"ref2","first-page":"1323","article-title":"Measuring HTTPS adoption on the web","volume-title":"Proc. 26th USENIX Secur. Symp.","author":"Felt"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1145\/2068816.2068856"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1145\/2488388.2488395"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1145\/2504730.2504755"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1145\/2987443.2987454"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3134007"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2018.00015"},{"key":"ref9","first-page":"211","article-title":"Certified phishing: Taking a look at public key certificates of phishing websites","volume-title":"Proc. 15th Symp. Usable Privacy Secur","author":"Drury"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1145\/3278532.3278562"},{"key":"ref11","first-page":"833","article-title":"Bamboozling certificate authorities with BGP","volume-title":"Proc. 27th USENIX Secur. Symp.","author":"Birge-Lee"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2014.15"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2015.38"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978411"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2017.40"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2017.46"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2014.13"},{"key":"ref18","doi-asserted-by":"crossref","DOI":"10.17487\/rfc5280","article-title":"Internet X.509 public key infrastructure certificate and certificate revocation list (CRL) profile","author":"Cooper","year":"2008"},{"key":"ref19","doi-asserted-by":"crossref","DOI":"10.17487\/rfc6125","article-title":"Representation and verification of domain-based application service identity within internet public key infrastructure using X.509 (PKIX) certificates in the context of transport layer security (TLS)","author":"Saint-Andre","year":"2011"},{"key":"ref20","doi-asserted-by":"crossref","DOI":"10.17487\/rfc6960","article-title":"X.509 Internet public key infrastructure online certificate status protocol-OCSP","author":"Santesson","year":"2013"},{"key":"ref21","doi-asserted-by":"crossref","DOI":"10.17487\/rfc6962","article-title":"Certificate transparency","author":"Laurie","year":"2013"},{"key":"ref22","article-title":"Baseline requirements for the issuance and management of publicly-trusted certificates version 1.7.6","author":"Forum","year":"2022"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-01244-0_38"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1109\/COMPSAC.2017.240"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1145\/3460120.3484768"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1145\/2786805.2786835"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2019.23149"},{"key":"ref28","article-title":"Selenium","year":"2022"},{"key":"ref29","first-page":"257","article-title":"Alice in warningland: A large-scale field study of browser security warning effectiveness","volume-title":"Proc. 22nd USENIX Secur. Symp.","author":"Akhawe"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1145\/2815675.2815685"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1145\/3359789.3359800"},{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2014.23305"},{"key":"ref33","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2017.2763947"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1145\/2766498.2766522"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.1145\/3134600.3134628"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.1145\/2382196.2382205"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1145\/3495243.3517026"},{"key":"ref38","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2016.23374"},{"key":"ref39","doi-asserted-by":"publisher","DOI":"10.1145\/3196494.3196528"},{"key":"ref40","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2020.3000595"},{"key":"ref41","doi-asserted-by":"publisher","DOI":"10.1109\/SP40000.2020.00077"},{"key":"ref42","doi-asserted-by":"publisher","DOI":"10.1145\/2660267.2660338"},{"key":"ref43","first-page":"223","article-title":"Not-quite-so-broken TLS: Lessons in re-engineering a security protocol specification and implementation","volume-title":"Proc. 24th USENIX Secur. Symp.","author":"Kaloper-Mer"},{"key":"ref44","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2016.22"},{"key":"ref45","first-page":"609","article-title":"TrustBase: An architecture to repair and strengthen certificate-based authentication","volume-title":"Proc. 26th USENIX Secur. Symp.","author":"O\u2019Neill"},{"key":"ref46","first-page":"4383","article-title":"What\u2019s in a name? Exploring CA certificate control","volume-title":"Proc. 30th USENIX Secur. Symp.","author":"Ma"},{"key":"ref47","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2017.17"},{"key":"ref48","doi-asserted-by":"publisher","DOI":"10.1109\/EuroSP48549.2020.00046"},{"key":"ref49","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2019.00027"},{"key":"ref50","doi-asserted-by":"publisher","DOI":"10.1145\/3548606.3560594"}],"container-title":["IEEE Transactions on Dependable and Secure Computing"],"original-title":[],"link":[{"URL":"https:\/\/ieeexplore.ieee.org\/ielam\/8858\/10400751\/10066507-aam.pdf","content-type":"application\/pdf","content-version":"am","intended-application":"syndication"},{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/8858\/10400751\/10066507.pdf?arnumber=10066507","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,5,28]],"date-time":"2024-05-28T18:24:06Z","timestamp":1716920646000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/10066507\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,1]]},"references-count":50,"journal-issue":{"issue":"1"},"URL":"https:\/\/doi.org\/10.1109\/tdsc.2023.3255869","relation":{},"ISSN":["1545-5971","1941-0018","2160-9209"],"issn-type":[{"value":"1545-5971","type":"print"},{"value":"1941-0018","type":"electronic"},{"value":"2160-9209","type":"electronic"}],"subject":[],"published":{"date-parts":[[2024,1]]}}}