{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,11,18]],"date-time":"2025-11-18T12:17:04Z","timestamp":1763468224407,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":31,"publisher":"ACM","license":[{"start":{"date-parts":[[2014,11,3]],"date-time":"2014-11-03T00:00:00Z","timestamp":1414972800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2014,11,3]]},"DOI":"10.1145\/2660267.2660355","type":"proceedings-article","created":{"date-parts":[[2014,11,11]],"date-time":"2014-11-11T13:40:05Z","timestamp":1415713205000},"page":"406-417","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":63,"title":["PoliCert"],"prefix":"10.1145","author":[{"given":"Pawel","family":"Szalachowski","sequence":"first","affiliation":[{"name":"ETH Zurich, Zurich, Switzerland"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Stephanos","family":"Matsumoto","sequence":"additional","affiliation":[{"name":"Carnegie Mellon University & ETH Zurich, Pittsburgh, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Adrian","family":"Perrig","sequence":"additional","affiliation":[{"name":"ETH Zurich, Zurich, Switzerland"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2014,11,3]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"Convergence. http:\/\/convergence.io\/.  Convergence. http:\/\/convergence.io\/."},{"key":"e_1_3_2_1_2_1","first-page":"257","volume-title":"Proceedings of the 22Nd USENIX Conference on Security, SEC'13","author":"Akhawe Devdatta","year":"2013"},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-0-387-39940-9_713"},{"key":"e_1_3_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1145\/2660267.2660298"},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"crossref","unstructured":"Daniel J. Bernstein Anna Krasnova and Tanja Lange. Elligator: Elliptic-curve points indistinguishable from uniform random strings. IACR Cryptology ePrint Archive 2013:325 2013.  Daniel J. Bernstein Anna Krasnova and Tanja Lange. Elligator: Elliptic-curve points indistinguishable from uniform random strings. IACR Cryptology ePrint Archive 2013:325 2013.","DOI":"10.1145\/2508859.2516734"},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"crossref","unstructured":"S. Blake-Wilson M. Nystrom D. Hopwood J. Mikkelsen and T. Wright. Transport Layer Security (TLS) Extensions. RFC 4366 (Proposed Standard) April 2006. Obsoleted by RFC 5246.  S. Blake-Wilson M. Nystrom D. Hopwood J. Mikkelsen and T. Wright. Transport Layer Security (TLS) Extensions. RFC 4366 (Proposed Standard) April 2006. Obsoleted by RFC 5246.","DOI":"10.17487\/rfc4366"},{"key":"e_1_3_2_1_7_1","unstructured":"Joppe W. Bos Craig Costello Patrick Longa and Michael Naehrig. Selecting elliptic curves for cryptography: An efficiency and security analysis. IACR Cryptology ePrint Archive 2014:130 2014.  Joppe W. Bos Craig Costello Patrick Longa and Michael Naehrig. Selecting elliptic curves for cryptography: An efficiency and security analysis. IACR Cryptology ePrint Archive 2014:130 2014."},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2013.41"},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"crossref","unstructured":"D. Cooper S. Santesson S. Farrell S. Boeyen R. Housley and W. Polk. Internet X.509 Public Key Infrastructure Certificatand Certificate Revocation List (CRL) Profile. RFC 5280 (Proposed Standard) May 2008.  D. Cooper S. Santesson S. Farrell S. Boeyen R. Housley and W. Polk. Internet X.509 Public Key Infrastructure Certificatand Certificate Revocation List (CRL) Profile. RFC 5280 (Proposed Standard) May 2008.","DOI":"10.17487\/rfc5280"},{"key":"e_1_3_2_1_10_1","first-page":"317","volume-title":"USENIX Security Symposium","author":"Scott","year":"2009"},{"key":"e_1_3_2_1_11_1","unstructured":"II Ecrypt. Ecrypt ii yearly report on algorithms and keysizes (2011--2012). Available on http:\/\/www. ecrypt. eu. org 2012.  II Ecrypt. Ecrypt ii yearly report on algorithms and keysizes (2011--2012). Available on http:\/\/www. ecrypt. eu. org 2012."},{"key":"e_1_3_2_1_12_1","unstructured":"Electronic Frontier Foundation. SSL Observatory. https:\/\/www.eff.org\/observatory.  Electronic Frontier Foundation. SSL Observatory. https:\/\/www.eff.org\/observatory."},{"key":"e_1_3_2_1_13_1","unstructured":"Chris Evans and Chris Palmer. Public key pinning extension for HTTP. November 2011.  Chris Evans and Chris Palmer. Public key pinning extension for HTTP. November 2011."},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1145\/2556288.2557292"},{"key":"e_1_3_2_1_15_1","unstructured":"Alexandra C Grant. Search for trust: An analysis and comparison of CA system alternatives and enhancements. 2012.  Alexandra C Grant. Search for trust: An analysis and comparison of CA system alternatives and enhancements. 2012."},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"crossref","unstructured":"Phillip Hallam-Baker and Rob Stradling. DNS certification authority authorization (CAA) resource record. January 2013.  Phillip Hallam-Baker and Rob Stradling. DNS certification authority authorization (CAA) resource record. January 2013.","DOI":"10.17487\/rfc6844"},{"volume-title":"ISO\/IEC","year":"2012","author":"IEC.","key":"e_1_3_2_1_17_1"},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-29889-9_4"},{"key":"e_1_3_2_1_19_1","unstructured":"James Kasten Eric Wustrow and J Alex Halderman. Cage: Taming certificate authorities by inferring restricted scopes.  James Kasten Eric Wustrow and J Alex Halderman. Cage: Taming certificate authorities by inferring restricted scopes."},{"volume-title":"Proceedings of the International World Wide Web Conference (WWW)","year":"2013","author":"Hyun-Jin Kim Tiffany","key":"e_1_3_2_1_20_1"},{"key":"e_1_3_2_1_21_1","unstructured":"Qualys SSL Lab. Ssl server test. https:\/\/www.ssllabs.com\/ssltest\/index.html 2014.  Qualys SSL Lab. Ssl server test. https:\/\/www.ssllabs.com\/ssltest\/index.html 2014."},{"key":"e_1_3_2_1_22_1","unstructured":"Adam Langley. Revocation checking and Chrome's CRL. https:\/\/www.imperialviolet.org\/2012\/02\/05\/crlsets.html February 2012.  Adam Langley. Revocation checking and Chrome's CRL. https:\/\/www.imperialviolet.org\/2012\/02\/05\/crlsets.html February 2012."},{"volume-title":"Google Research","year":"2012","author":"Laurie Ben","key":"e_1_3_2_1_23_1"},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"crossref","unstructured":"Ben Laurie Adam Langley and E Kasper. Certificate transparency. Available: ietf. org-Certificate Transparency (06.01. 2013) 2013.  Ben Laurie Adam Langley and E Kasper. Certificate transparency. Available: ietf. org-Certificate Transparency (06.01. 2013) 2013.","DOI":"10.17487\/rfc6962"},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.5555\/646752.704751"},{"key":"e_1_3_2_1_26_1","unstructured":"Mozilla. Revocation plan (draft). https:\/\/wiki.mozilla.org\/CA:RevocationPlan 2014.  Mozilla. Revocation plan (draft). https:\/\/wiki.mozilla.org\/CA:RevocationPlan 2014."},{"key":"e_1_3_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-27576-0_20"},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1109\/MC.2006.101"},{"key":"e_1_3_2_1_30_1","unstructured":"H. Tschofenig and E. Lear. Evolving the web public key infrastructure. http:\/\/tools.ietf.org\/id\/ draft-tschofenig-iab-webpki-evolution-01.html 2013.  H. Tschofenig and E. Lear. Evolving the web public key infrastructure. http:\/\/tools.ietf.org\/id\/ draft-tschofenig-iab-webpki-evolution-01.html 2013."},{"key":"e_1_3_2_1_31_1","unstructured":"VeriSign Inc. The domain name industry brief. https:\/\/www.verisigninc.com\/assets\/domain-name-report-april2014.pdf April 2014.  VeriSign Inc. The domain name industry brief. https:\/\/www.verisigninc.com\/assets\/domain-name-report-april2014.pdf April 2014."},{"key":"e_1_3_2_1_32_1","first-page":"321","volume-title":"USENIX Annual Technical Conference","author":"Wendlandt Dan","year":"2008"}],"event":{"name":"CCS'14: 2014 ACM SIGSAC Conference on Computer and Communications Security","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"],"location":"Scottsdale Arizona USA","acronym":"CCS'14"},"container-title":["Proceedings of the 2014 ACM SIGSAC Conference on Computer and Communications Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2660267.2660355","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2660267.2660355","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T06:13:39Z","timestamp":1750227219000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2660267.2660355"}},"subtitle":["Secure and Flexible TLS Certificate Management"],"short-title":[],"issued":{"date-parts":[[2014,11,3]]},"references-count":31,"alternative-id":["10.1145\/2660267.2660355","10.1145\/2660267"],"URL":"https:\/\/doi.org\/10.1145\/2660267.2660355","relation":{},"subject":[],"published":{"date-parts":[[2014,11,3]]},"assertion":[{"value":"2014-11-03","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}