{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,27]],"date-time":"2026-05-27T15:39:33Z","timestamp":1779896373725,"version":"3.53.1"},"publisher-location":"New York, NY, USA","reference-count":28,"publisher":"ACM","license":[{"start":{"date-parts":[[2014,11,3]],"date-time":"2014-11-03T00:00:00Z","timestamp":1414972800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/100000144","name":"Division of Computer and Network Systems","doi-asserted-by":"publisher","award":["CNS-1040801"],"award-info":[{"award-number":["CNS-1040801"]}],"id":[{"id":"10.13039\/100000144","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2014,11,3]]},"DOI":"10.1145\/2660267.2660298","type":"proceedings-article","created":{"date-parts":[[2014,11,11]],"date-time":"2014-11-11T13:40:05Z","timestamp":1415713205000},"page":"382-393","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":75,"title":["ARPKI"],"prefix":"10.1145","author":[{"given":"David","family":"Basin","sequence":"first","affiliation":[{"name":"ETH Zurich, Zurich, Switzerland"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Cas","family":"Cremers","sequence":"additional","affiliation":[{"name":"University of Oxford, Oxford, United Kingdom"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Tiffany Hyun-Jin","family":"Kim","sequence":"additional","affiliation":[{"name":"Carnegie Mellon University, Pittsburgh, PA, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Adrian","family":"Perrig","sequence":"additional","affiliation":[{"name":"ETH Zurich, Zurich, Switzerland"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Ralf","family":"Sasse","sequence":"additional","affiliation":[{"name":"ETH Zurich, Zurich, Switzerland"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Pawel","family":"Szalachowski","sequence":"additional","affiliation":[{"name":"ETH Zurich, Zurich, Switzerland"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2014,11,3]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"ARPKI\n\n  \n  : Full implementation formal model and security properties. http:\/\/www.netsec.ethz.ch\/research\/arpki.  ARPKI: Full implementation formal model and security properties. http:\/\/www.netsec.ethz.ch\/research\/arpki."},{"key":"e_1_3_2_1_2_1","unstructured":"Convergence. http:\/\/convergence.io\/.  Convergence. http:\/\/convergence.io\/."},{"key":"e_1_3_2_1_3_1","unstructured":"Public Key Pinning. http:\/\/www.imperialviolet.org\/2011\/05\/04\/pinning.html May 2011.  Public Key Pinning. http:\/\/www.imperialviolet.org\/2011\/05\/04\/pinning.html May 2011."},{"key":"e_1_3_2_1_4_1","unstructured":"Public Key Pinning Extension for HTTP. http:\/\/tools.ietf.org\/html\/draft-ietf-websec-key-pinning-01 December 2011.  Public Key Pinning Extension for HTTP. http:\/\/tools.ietf.org\/html\/draft-ietf-websec-key-pinning-01 December 2011."},{"key":"e_1_3_2_1_5_1","volume-title":"HotOS. USENIX Association","author":"Abadi Martin","year":"2013"},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1007\/s13389-012-0027-1"},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1145\/1655008.1655012"},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"crossref","unstructured":"D. Cooper S. Santesson S. Farrell S. Boeyen R. Housley and W. Polk. Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile. RFC 5280 (Proposed Standard) May 2008.  D. Cooper S. Santesson S. Farrell S. Boeyen R. Housley and W. Polk. Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile. RFC 5280 (Proposed Standard) May 2008.","DOI":"10.17487\/rfc5280"},{"key":"e_1_3_2_1_9_1","unstructured":"Paul Ducklin. The TURKTRUST SSL certificate fiasco - what really happened and what happens next? http:\/\/nakedsecurity.sophos.com\/2013\/01\/08\/the-turktrust-ssl-certificate-fiasco-what-happened-and-what-happens-next\/ January 2013.  Paul Ducklin. The TURKTRUST SSL certificate fiasco - what really happened and what happens next? http:\/\/nakedsecurity.sophos.com\/2013\/01\/08\/the-turktrust-ssl-certificate-fiasco-what-happened-and-what-happens-next\/ January 2013."},{"key":"e_1_3_2_1_10_1","unstructured":"Peter Eckersley. Sovereign Key Cryptography for Internet Domains. https:\/\/git.eff.org\/?p=sovereign-keys.git;a=blob;f=sovereign-key-design.txt;hb=HEAD.  Peter Eckersley. Sovereign Key Cryptography for Internet Domains. https:\/\/git.eff.org\/?p=sovereign-keys.git;a=blob;f=sovereign-key-design.txt;hb=HEAD."},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1145\/2382196.2382204"},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"crossref","unstructured":"Paul Hoffman and Jakob Schlyter. The DNS-based Authentication of Named Entities (DANE) Transport Layer Security (TLS) Protocol: TLSA. http:\/\/tools.ietf.org\/html\/rfc6698 August 2012. IETF RFC 6698.  Paul Hoffman and Jakob Schlyter. The DNS-based Authentication of Named Entities (DANE) Transport Layer Security (TLS) Protocol: TLSA. http:\/\/tools.ietf.org\/html\/rfc6698 August 2012. IETF RFC 6698.","DOI":"10.17487\/rfc6698"},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-29889-9_4"},{"key":"e_1_3_2_1_15_1","volume-title":"Proceedings of the International World Wide Web Conference (WWW)","author":"Hyun-Jin Kim Tiffany","year":"2013"},{"key":"e_1_3_2_1_16_1","unstructured":"Adam Langley. Overclocking SSL. https:\/\/www.imperialviolet.org\/2010\/06\/25\/overclocking-ssl.html June 2010.  Adam Langley. Overclocking SSL. https:\/\/www.imperialviolet.org\/2010\/06\/25\/overclocking-ssl.html June 2010."},{"key":"e_1_3_2_1_17_1","unstructured":"Ben Laurie and Emilia Kasper. Revocation Transparency. http:\/\/sump2.links.org\/files\/ RevocationTransparency.pdf.  Ben Laurie and Emilia Kasper. Revocation Transparency. http:\/\/sump2.links.org\/files\/ RevocationTransparency.pdf."},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"crossref","unstructured":"Ben Laurie Adam Langley and Emilia Kasper. Certificate Transparency. http:\/\/tools.ietf.org\/pdf\/rfc6962.pdf June 2013. IETF RFC 6962.  Ben Laurie Adam Langley and Emilia Kasper. Certificate Transparency. http:\/\/tools.ietf.org\/pdf\/rfc6962.pdf June 2013. IETF RFC 6962.","DOI":"10.17487\/rfc6962"},{"key":"e_1_3_2_1_19_1","unstructured":"Moxie Marlinspike and Trevor Perrin. Trust Assertions for Certificate Keys. http:\/\/tack.io\/draft.html May 2012.  Moxie Marlinspike and Trevor Perrin. Trust Assertions for Certificate Keys. http:\/\/tack.io\/draft.html May 2012."},{"key":"e_1_3_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.5555\/2958031.2958047"},{"key":"e_1_3_2_1_21_1","unstructured":"Joseph Menn. Key internet operator VeriSign hit by hackers. http:\/\/www.reuters.com\/article\/2012\/02\/02\/us-hacking-verisign-idUSTRE8110Z820120202 January 2012.  Joseph Menn. Key internet operator VeriSign hit by hackers. http:\/\/www.reuters.com\/article\/2012\/02\/02\/us-hacking-verisign-idUSTRE8110Z820120202 January 2012."},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"crossref","unstructured":"M. Myers R. Ankney A. Malpani S. Galperin and C. Adams. X.509 Internet Public Key Infrastructure Online Certificate Status Protocol - OCSP. Internet Request for Comments 2560 June 1999.   M. Myers R. Ankney A. Malpani S. Galperin and C. Adams. X.509 Internet Public Key Infrastructure Online Certificate Status Protocol - OCSP. Internet Request for Comments 2560 June 1999.","DOI":"10.17487\/rfc2560"},{"key":"e_1_3_2_1_23_1","unstructured":"Paul Roberts. Phony SSL certificates issued for Google Yahoo Skype others. http:\/\/threatpost.com\/phony-ssl-certificates-issued-google-yahoo-skype-others-032311\/ March 2011.  Paul Roberts. Phony SSL certificates issued for Google Yahoo Skype others. http:\/\/threatpost.com\/phony-ssl-certificates-issued-google-yahoo-skype-others-032311\/ March 2011."},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2014.23379"},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1109\/CSF.2012.25"},{"key":"e_1_3_2_1_26_1","unstructured":"Toby Sterling. Second firm warns of concern after Dutch hack. http:\/\/news.yahoo.com\/second-firm-warns-concern-dutch-hack-215940770.html September 2011.  Toby Sterling. Second firm warns of concern after Dutch hack. http:\/\/news.yahoo.com\/second-firm-warns-concern-dutch-hack-215940770.html September 2011."},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1145\/2660267.2660355"},{"key":"e_1_3_2_1_28_1","volume-title":"Web 2.0 Security and Privacy","author":"Topalovic Emin","year":"2012"},{"key":"e_1_3_2_1_29_1","volume-title":"Adrian Perrig. Perspectives: Improving SSH-style Host Authentication with Multi-Path Probing. In Proceedings of USENIX Annual Technical Conference","author":"Wendlandt Dan","year":"2008"}],"event":{"name":"CCS'14: 2014 ACM SIGSAC Conference on Computer and Communications Security","location":"Scottsdale Arizona USA","acronym":"CCS'14","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"]},"container-title":["Proceedings of the 2014 ACM SIGSAC Conference on Computer and Communications Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2660267.2660298","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2660267.2660298","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T06:56:10Z","timestamp":1750229770000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2660267.2660298"}},"subtitle":["Attack Resilient Public-Key Infrastructure"],"short-title":[],"issued":{"date-parts":[[2014,11,3]]},"references-count":28,"alternative-id":["10.1145\/2660267.2660298","10.1145\/2660267"],"URL":"https:\/\/doi.org\/10.1145\/2660267.2660298","relation":{},"subject":[],"published":{"date-parts":[[2014,11,3]]},"assertion":[{"value":"2014-11-03","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}