{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,26]],"date-time":"2026-02-26T23:11:26Z","timestamp":1772147486831,"version":"3.50.1"},"publisher-location":"New York, NY, USA","reference-count":82,"publisher":"ACM","license":[{"start":{"date-parts":[[2017,11,1]],"date-time":"2017-11-01T00:00:00Z","timestamp":1509494400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/100007523","name":"Division of Advanced Cyberinfrastructure","doi-asserted-by":"publisher","award":["1348077"],"award-info":[{"award-number":["1348077"]}],"id":[{"id":"10.13039\/100007523","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100002347","name":"Bundesministerium f\u00fcr Bildung und Forschung","doi-asserted-by":"publisher","award":["X-CHECK 16KIS0530 and DecADe 16KIS0538"],"award-info":[{"award-number":["X-CHECK 16KIS0530 and DecADe 16KIS0538"]}],"id":[{"id":"10.13039\/501100002347","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/100000144","name":"Division of Computer and Network Systems","doi-asserted-by":"publisher","award":["1528156"],"award-info":[{"award-number":["1528156"]}],"id":[{"id":"10.13039\/100000144","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100001774","name":"University of Sydney","doi-asserted-by":"publisher","award":["Major Equipment and Early Career Researcher grant schemes of the Faculty of Engineering & Information Technology"],"award-info":[{"award-number":["Major Equipment and Early Career Researcher grant schemes of the Faculty of Engineering & Information Technology"]}],"id":[{"id":"10.13039\/501100001774","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2017,11]]},"DOI":"10.1145\/3131365.3131401","type":"proceedings-article","created":{"date-parts":[[2017,11,14]],"date-time":"2017-11-14T14:40:22Z","timestamp":1510670422000},"page":"325-340","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":62,"title":["Mission accomplished?"],"prefix":"10.1145","author":[{"given":"Johanna","family":"Amann","sequence":"first","affiliation":[{"name":"ICSI \/ Corelight \/ LBNL"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Oliver","family":"Gasser","sequence":"additional","affiliation":[{"name":"Technical University of Munich"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Quirin","family":"Scheitle","sequence":"additional","affiliation":[{"name":"Technical University of Munich"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Lexi","family":"Brent","sequence":"additional","affiliation":[{"name":"The University of Sydney"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Georg","family":"Carle","sequence":"additional","affiliation":[{"name":"Technical University of Munich"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ralph","family":"Holz","sequence":"additional","affiliation":[{"name":"The University of Sydney"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2017,11]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"ACM. Result and Artifact Review and Badging. https:\/\/www.acm.org\/publications\/policies\/artifact-review-badging Acc. Jan 18 2017.  ACM. Result and Artifact Review and Badging. https:\/\/www.acm.org\/publications\/policies\/artifact-review-badging Acc. Jan 18 2017."},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1145\/2810103.2813707"},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1145\/2488388.2488395"},{"key":"e_1_3_2_1_4_1","unstructured":"Alexa. Top 1 000 000 sites. http:\/\/s3.amazonaws.com\/alexa-static\/top-1m.csv.zip April 02 2017.  Alexa. Top 1 000 000 sites. http:\/\/s3.amazonaws.com\/alexa-static\/top-1m.csv.zip April 02 2017."},{"key":"e_1_3_2_1_5_1","volume-title":"April 02, 2017."},{"key":"e_1_3_2_1_6_1","unstructured":"Johanna Amann. One sided connection tests for Bro. https:\/\/github.com\/0xxon\/bro-onesided-tls 2017.  Johanna Amann. One sided connection tests for Bro. https:\/\/github.com\/0xxon\/bro-onesided-tls 2017."},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1145\/2523649.2523665"},{"key":"e_1_3_2_1_9_1","unstructured":"Richard Barnes Jacob Hoffman-Andrews and James Kasten. Automatic Certificate Management Environment (ACME). Internet draft 2017.  Richard Barnes Jacob Hoffman-Andrews and James Kasten. Automatic Certificate Management Environment (ACME). Internet draft 2017."},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2015.39"},{"key":"e_1_3_2_1_11_1","unstructured":"Birk Blechschmidt and Quirin Scheitle. GitHub: massdns commit 4b3148a. https:\/\/github.com\/quirins\/massdns 2017.  Birk Blechschmidt and Quirin Scheitle. GitHub: massdns commit 4b3148a. https:\/\/github.com\/quirins\/massdns 2017."},{"key":"e_1_3_2_1_12_1","unstructured":"CA\/Browser Forum. Ballot 187 -- Make CAA Checking Mandatory. https:\/\/cabforum.org\/2017\/03\/08\/ballot-187--make-caa-checking-mandatory\/.  CA\/Browser Forum. Ballot 187 -- Make CAA Checking Mandatory. https:\/\/cabforum.org\/2017\/03\/08\/ballot-187--make-caa-checking-mandatory\/."},{"key":"e_1_3_2_1_13_1","unstructured":"Certificate Transparency. Feb 2014 Survey Responses. Results from Google survey. https:\/\/sites.google.com\/site\/certificatetransparency\/feb-2014-survey-responses 2014.  Certificate Transparency. Feb 2014 Survey Responses. Results from Google survey. https:\/\/sites.google.com\/site\/certificatetransparency\/feb-2014-survey-responses 2014."},{"key":"e_1_3_2_1_14_1","unstructured":"Chromium. HSTS\/HPKP Preload Lists. v389 commit 21f26e9 https:\/\/cs.chromium.org\/chromium\/src\/net\/http\/transport_security_state_static.json?rcl=21f26e9 02.03.2017.  Chromium. HSTS\/HPKP Preload Lists. v389 commit 21f26e9 https:\/\/cs.chromium.org\/chromium\/src\/net\/http\/transport_security_state_static.json?rcl=21f26e9 02.03.2017."},{"key":"e_1_3_2_1_15_1","volume-title":"Efficient Gossip Protocols for Verifying the Consistency of Certificate Logs. In 2015 IEEE Conference on Communications and Network Security (CNS)","author":"Chuat L.","year":"2015"},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1145\/2987443.2987454"},{"key":"e_1_3_2_1_17_1","volume-title":"April 02, 2017."},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2013.41"},{"key":"e_1_3_2_1_19_1","unstructured":"Comodo CA. New certificate for www.fhi.no with corrected SCTs. crt.sh: https:\/\/crt.sh\/?id=142059145 2017.  Comodo CA. New certificate for www.fhi.no with corrected SCTs. crt.sh: https:\/\/crt.sh\/?id=142059145 2017."},{"key":"e_1_3_2_1_20_1","unstructured":"Comodo CA. Revoked certificate for www.fhi.no with invalid SCTs. crt.sh: https:\/\/crt.sh\/?id=23021029 2017.  Comodo CA. Revoked certificate for www.fhi.no with invalid SCTs. crt.sh: https:\/\/crt.sh\/?id=23021029 2017."},{"key":"e_1_3_2_1_21_1","volume-title":"F\u00e9lix Brezo. Implementation State of HSTS and HPKP in Both Browsers and Servers. In International Conference on Cryptology and Network Security. Springer","author":"de los Santos Sergio","year":"2016"},{"key":"e_1_3_2_1_22_1","volume-title":"US Department of Homeland Security","author":"Dittrich David","year":"2012"},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1145\/2815675.2815695"},{"key":"e_1_3_2_1_24_1","volume-title":"Proc. 22nd USENIX Security Symposium (USENIX Security)","author":"Durumeric Zakir","year":"2013"},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"crossref","unstructured":"Chris Evans Chris Palmer and Ryan Sleevi. Public Key Pinning Extension for HTTP. RFC 7469 (Proposed Standard) April 2015.  Chris Evans Chris Palmer and Ryan Sleevi. Public Key Pinning Extension for HTTP. RFC 7469 (Proposed Standard) April 2015.","DOI":"10.17487\/RFC7469"},{"key":"e_1_3_2_1_26_1","unstructured":"Oliver Gasser et al. GitHub repository for goscanner. https:\/\/github.com\/tumi8\/goscanner 2017.  Oliver Gasser et al. GitHub repository for goscanner. https:\/\/github.com\/tumi8\/goscanner 2017."},{"key":"e_1_3_2_1_27_1","volume-title":"Proc. 8th Int. Workshop Traffic Monitoring and Analysis (TMA)","author":"Gasser Oliver","year":"2016"},{"key":"e_1_3_2_1_28_1","unstructured":"Google. Certificate Transparency in Chrome. https:\/\/a77db9aa-a-7b23c8ea-s-sites.googlegroups.com\/a\/chromium.org\/dev\/Home\/chromium-security\/root-ca-policy\/CTPolicyMay2016edition.pdf May 2016.  Google. Certificate Transparency in Chrome. https:\/\/a77db9aa-a-7b23c8ea-s-sites.googlegroups.com\/a\/chromium.org\/dev\/Home\/chromium-security\/root-ca-policy\/CTPolicyMay2016edition.pdf May 2016."},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"crossref","unstructured":"Google. Certificate Transparency repository on GitHub. https:\/\/github.com\/google\/certificate-transparency 2017.  Google. Certificate Transparency repository on GitHub. https:\/\/github.com\/google\/certificate-transparency 2017.","DOI":"10.1515\/popets-2017-0052"},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"crossref","unstructured":"Google. Certificate Transparency website. https:\/\/www.certificate-transparency.org\/ 2017.  Google. Certificate Transparency website. https:\/\/www.certificate-transparency.org\/ 2017.","DOI":"10.1515\/popets-2017-0052"},{"key":"e_1_3_2_1_31_1","unstructured":"Google and Lexi Brent. GitHub repository for modified version of Google's CT log monitor. https:\/\/github.com\/lexibrent\/certificate-transparency\/tree\/ctscan_project_dev 2017.  Google and Lexi Brent. GitHub repository for modified version of Google's CT log monitor. https:\/\/github.com\/lexibrent\/certificate-transparency\/tree\/ctscan_project_dev 2017."},{"key":"e_1_3_2_1_32_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-54328-4_7"},{"key":"e_1_3_2_1_33_1","doi-asserted-by":"crossref","unstructured":"Philipp Hallam-Baker and Rob Stradling. DNS Certification Authority Authorization (CAA) Resource Record. RFC 6844 January 2013.  Philipp Hallam-Baker and Rob Stradling. DNS Certification Authority Authorization (CAA) Resource Record. RFC 6844 January 2013.","DOI":"10.17487\/rfc6844"},{"key":"e_1_3_2_1_34_1","unstructured":"Scott Helme. Getting an A+ on the Qualys SSL Test - Windows Edition. https:\/\/scotthelme.co.uk\/getting-an-a-on-the-qualys-ssl-test-windows-edition\/ Jan 2015.  Scott Helme. Getting an A+ on the Qualys SSL Test - Windows Edition. https:\/\/scotthelme.co.uk\/getting-an-a-on-the-qualys-ssl-test-windows-edition\/ Jan 2015."},{"key":"e_1_3_2_1_35_1","volume-title":"USENIX Security","author":"Heninger Nadia","year":"2012"},{"key":"e_1_3_2_1_36_1","doi-asserted-by":"crossref","unstructured":"Jeff Hodges Collin Jackson and Adam Barth. HTTP Strict Transport Security (HSTS). RFC 6797 November 2012.  Jeff Hodges Collin Jackson and Adam Barth. HTTP Strict Transport Security (HSTS). RFC 6797 November 2012.","DOI":"10.17487\/rfc6797"},{"key":"e_1_3_2_1_37_1","doi-asserted-by":"crossref","unstructured":"Paul Hoffman and Jakob Schlyter. The DNS-Based Authentication of Named Entities (DANE) Transport Layer Security (TLS) Protocol: TLSA. RFC 6698 (Proposed Standard) August 2012. Updated by RFCs 7218 7671.  Paul Hoffman and Jakob Schlyter. The DNS-Based Authentication of Named Entities (DANE) Transport Layer Security (TLS) Protocol: TLSA. RFC 6698 (Proposed Standard) August 2012. Updated by RFCs 7218 7671.","DOI":"10.17487\/rfc6698"},{"key":"e_1_3_2_1_38_1","volume-title":"Network and Distributed System Security Symposium (NDSS'16)","author":"Holz Ralph","year":"2016"},{"key":"e_1_3_2_1_39_1","doi-asserted-by":"publisher","DOI":"10.1145\/2068816.2068856"},{"key":"e_1_3_2_1_40_1","doi-asserted-by":"crossref","unstructured":"Lin-Shung Huang Shrikant Adhikarla Dan Boneh and Collin Jackson. An Experimental Study of TLS Forward Secrecy Deployments. IEEE Internet Computing 18(6) 2014.  Lin-Shung Huang Shrikant Adhikarla Dan Boneh and Collin Jackson. An Experimental Study of TLS Forward Secrecy Deployments. IEEE Internet Computing 18(6) 2014.","DOI":"10.1109\/MIC.2014.86"},{"key":"e_1_3_2_1_41_1","unstructured":"ICANN. Centralized zone data service. https:\/\/czds.icann.org April 02 2017.  ICANN. Centralized zone data service. https:\/\/czds.icann.org April 02 2017."},{"key":"e_1_3_2_1_42_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2015.23162"},{"key":"e_1_3_2_1_43_1","unstructured":"NLnet Labs. Unbound 1.6.0 DNS resolver. https:\/\/www.unbound.net 2017.  NLnet Labs. Unbound 1.6.0 DNS resolver. https:\/\/www.unbound.net 2017."},{"key":"e_1_3_2_1_44_1","doi-asserted-by":"crossref","unstructured":"Ben Laurie Adam Langley and Emilia Kasper. Certificate Transparency. RFC 6962 (Experimental) June 2013.  Ben Laurie Adam Langley and Emilia Kasper. Certificate Transparency. RFC 6962 (Experimental) June 2013.","DOI":"10.17487\/rfc6962"},{"key":"e_1_3_2_1_45_1","unstructured":"Eric Law. Internet Explorer should send TLS_FALLBACK_SCSV. https:\/\/connect.microsoft.com\/IE\/feedback\/details\/1002874\/internet-explorer-should-send-tls-fallback-scsv Oct 2014.  Eric Law. Internet Explorer should send TLS_FALLBACK_SCSV. https:\/\/connect.microsoft.com\/IE\/feedback\/details\/1002874\/internet-explorer-should-send-tls-fallback-scsv Oct 2014."},{"key":"e_1_3_2_1_46_1","volume-title":"Stefan Savage. Measuring the Practical Impact of DNSSEC Deployment. In Proc. 22nd USENIX Security Symposium (USENIX Security), Washington, D.C.","author":"Lian Wilson","year":"2013"},{"key":"e_1_3_2_1_47_1","unstructured":"Mozilla. HPKP Preload List. https:\/\/wiki.mozilla.org\/SecurityEngineering\/Public_Key_Pinning\/Implementation_Details March 02 2017.  Mozilla. HPKP Preload List. https:\/\/wiki.mozilla.org\/SecurityEngineering\/Public_Key_Pinning\/Implementation_Details March 02 2017."},{"key":"e_1_3_2_1_48_1","unstructured":"Mozilla. HSTS Preload List. https:\/\/wiki.mozilla.org\/SecurityEngineering\/HTTP_Strict_Transport_Security_(HSTS)_Preload_List March 02 2017.  Mozilla. HSTS Preload List. https:\/\/wiki.mozilla.org\/SecurityEngineering\/HTTP_Strict_Transport_Security_(HSTS)_Preload_List March 02 2017."},{"key":"e_1_3_2_1_49_1","unstructured":"Bodo M\u00f6ller Thai Duong and Krzysztof Kotowicz. This POODLE Bites: Exploiting the SSL 3.0 Fallback. https:\/\/www.openssl.org\/~bodo\/ssl-poodle.pdf 2014.  Bodo M\u00f6ller Thai Duong and Krzysztof Kotowicz. This POODLE Bites: Exploiting the SSL 3.0 Fallback. https:\/\/www.openssl.org\/~bodo\/ssl-poodle.pdf 2014."},{"key":"e_1_3_2_1_50_1","doi-asserted-by":"crossref","unstructured":"Bodo M\u00f6ller and Adam Langley. TLS Fallback Signaling Cipher Suite Value (SCSV) for Preventing Protocol Downgrade Attacks. RFC 7507 (Proposed Standard) April 2015.  Bodo M\u00f6ller and Adam Langley. TLS Fallback Signaling Cipher Suite Value (SCSV) for Preventing Protocol Downgrade Attacks. RFC 7507 (Proposed Standard) April 2015.","DOI":"10.17487\/RFC7507"},{"key":"e_1_3_2_1_51_1","unstructured":"Johnathan Nightingale. Mozilla Security Blog: DigiNotar Removal Follow Up. https:\/\/blog.mozilla.org\/security\/2011\/09\/02\/diginotar-removal-follow-up\/.  Johnathan Nightingale. Mozilla Security Blog: DigiNotar Removal Follow Up. https:\/\/blog.mozilla.org\/security\/2011\/09\/02\/diginotar-removal-follow-up\/."},{"key":"e_1_3_2_1_52_1","unstructured":"Notebook http-header-parsing-v4v6 Section Per-Scan-Inconsistency-Analysis. https:\/\/mediatum.ub.tum.de\/1377982\/.  Notebook http-header-parsing-v4v6 Section Per-Scan-Inconsistency-Analysis. https:\/\/mediatum.ub.tum.de\/1377982\/."},{"key":"e_1_3_2_1_53_1","doi-asserted-by":"publisher","DOI":"10.1145\/1452520.1452548"},{"key":"e_1_3_2_1_54_1","doi-asserted-by":"publisher","DOI":"10.1145\/2896816"},{"key":"e_1_3_2_1_55_1","doi-asserted-by":"publisher","DOI":"10.1016\/S1389-1286(99)00112-7"},{"key":"e_1_3_2_1_56_1","unstructured":"PremiumDrops. Domain lists. http:\/\/premiumdrops.com\/zones.html April 02 2017.  PremiumDrops. Domain lists. http:\/\/premiumdrops.com\/zones.html April 02 2017."},{"key":"e_1_3_2_1_57_1","unstructured":"Ronald Prins. DigiNotar Certificate Authority Breach \"Operation Black Tulip\". https:\/\/www.rijksoverheid.nl\/binaries\/rijksoverheid\/documenten\/rapporten\/2011\/09\/05\/diginotar-public-report-version-1\/rapport-fox-it-operation-black-tulip-v1-0.pdf September 2012.  Ronald Prins. DigiNotar Certificate Authority Breach \"Operation Black Tulip\". https:\/\/www.rijksoverheid.nl\/binaries\/rijksoverheid\/documenten\/rapporten\/2011\/09\/05\/diginotar-public-report-version-1\/rapport-fox-it-operation-black-tulip-v1-0.pdf September 2012."},{"key":"e_1_3_2_1_58_1","unstructured":"Qualy SSL Labs. Ssl server test. https:\/\/www.ssllabs.com\/ssltest\/.  Qualy SSL Labs. Ssl server test. https:\/\/www.ssllabs.com\/ssltest\/."},{"key":"e_1_3_2_1_59_1","unstructured":"The Register. Blue Coat Chockes on Chrome Encryption. https:\/\/www.theregister.co.uk\/2017\/02\/27\/blue_coat_chokes_on_chrome_encryption_update\/ 27 Februar 2017.  The Register. Blue Coat Chockes on Chrome Encryption. https:\/\/www.theregister.co.uk\/2017\/02\/27\/blue_coat_chokes_on_chrome_encryption_update\/ 27 Februar 2017."},{"key":"e_1_3_2_1_60_1","volume-title":"Proceedings of the USENIX ATC","author":"Rizzo Luigi","year":"2012"},{"key":"e_1_3_2_1_61_1","unstructured":"Luigi Rizzo et al. GitHub repository for lb. https:\/\/github.com\/luigirizzo\/netmap\/tree\/master\/apps\/lb 2017.  Luigi Rizzo et al. GitHub repository for lb. https:\/\/github.com\/luigirizzo\/netmap\/tree\/master\/apps\/lb 2017."},{"key":"e_1_3_2_1_62_1","volume-title":"Ryan. Enhanced Certificate Transparency and End-to-End Encrypted Mail. In In Network and Distributed System Security Symposium (NDSS). Internet Society","author":"Mark","year":"2014"},{"key":"e_1_3_2_1_63_1","volume-title":"Georg Carle. HLOC: Hints-Based Geolocation Leveraging Multiple Measurement Frameworks. In Network Traffic Measurement and Analysis Conference (TMA)","author":"Scheitle Quirin","year":"2017"},{"key":"e_1_3_2_1_64_1","doi-asserted-by":"publisher","DOI":"10.1145\/3097766.3097768"},{"key":"e_1_3_2_1_65_1","unstructured":"Ryan Sleevi. Sustaining Digital Certificate Security. Google blog post: https:\/\/googleonlinesecuritys.blogspot.com\/2015\/12\/sustaining-digital-certificate-security.html 28 October 2015.  Ryan Sleevi. Sustaining Digital Certificate Security. Google blog post: https:\/\/googleonlinesecuritys.blogspot.com\/2015\/12\/sustaining-digital-certificate-security.html 28 October 2015."},{"key":"e_1_3_2_1_66_1","unstructured":"Symantec. Certificate Transparency - Symantec Log Server Inclusion. https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=483625 2015.  Symantec. Certificate Transparency - Symantec Log Server Inclusion. https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=483625 2015."},{"key":"e_1_3_2_1_67_1","unstructured":"Symantec. Certificate Transparency for Symantec SSL Certificates. https:\/\/knowledge.symantec.com\/support\/ssl-certificates-support\/index?page=content&id=AR2177 22 August 2016.  Symantec. Certificate Transparency for Symantec SSL Certificates. https:\/\/knowledge.symantec.com\/support\/ssl-certificates-support\/index?page=content&id=AR2177 22 August 2016."},{"key":"e_1_3_2_1_68_1","doi-asserted-by":"crossref","unstructured":"Pawel Szalachowski and Adrian Perrig. Short Paper: On Deployment of DNS-based Security Enhancements. CoRR abs\/1702.05311 2017.  Pawel Szalachowski and Adrian Perrig. Short Paper: On Deployment of DNS-based Security Enhancements. CoRR abs\/1702.05311 2017.","DOI":"10.1007\/978-3-319-70972-7_24"},{"key":"e_1_3_2_1_69_1","unstructured":"Tune The Web. OPINION - Dangerous Web Security Features. https:\/\/www.tunetheweb.com\/blog\/dangerous-web-security-features\/ Sep 2015.  Tune The Web. OPINION - Dangerous Web Security Features. https:\/\/www.tunetheweb.com\/blog\/dangerous-web-security-features\/ Sep 2015."},{"key":"e_1_3_2_1_70_1","doi-asserted-by":"crossref","unstructured":"Roland van Rijswijk-Deij Mattijs Jonker Anna Sperotto and Aiko Pras. A High-Performance Scalable Infrastructure for Large-Scale Active DNS Measurements. IEEE Journal on Selected Areas in Communications 2016.  Roland van Rijswijk-Deij Mattijs Jonker Anna Sperotto and Aiko Pras. A High-Performance Scalable Infrastructure for Large-Scale Active DNS Measurements. IEEE Journal on Selected Areas in Communications 2016.","DOI":"10.1109\/JSAC.2016.2558918"},{"key":"e_1_3_2_1_71_1","doi-asserted-by":"publisher","DOI":"10.1145\/2987443.2987462"},{"key":"e_1_3_2_1_72_1","unstructured":"Verisign. Domain Name Industry Brief Q1'17. https:\/\/www.verisign.com\/assets\/domain-name-report-Q12017.pdf 2017.  Verisign. Domain Name Industry Brief Q1'17. https:\/\/www.verisign.com\/assets\/domain-name-report-Q12017.pdf 2017."},{"key":"e_1_3_2_1_73_1","unstructured":"VeriSign Labs. SecSpider---global DNSSEC deployment tracking. http:\/\/secspider.verisignlabs.com\/stats.html 2017.  VeriSign Labs. SecSpider---global DNSSEC deployment tracking. http:\/\/secspider.verisignlabs.com\/stats.html 2017."},{"key":"e_1_3_2_1_74_1","unstructured":"ViewDNS. Domain lists. http:\/\/viewdns.info\/data\/ 2 April 2017.  ViewDNS. Domain lists. http:\/\/viewdns.info\/data\/ 2 April 2017."},{"key":"e_1_3_2_1_75_1","unstructured":"W3Tech. Usage of web servers for websites. https:\/\/w3techs.com\/technologies\/overview\/web_server\/all May 14 2017.  W3Tech. Usage of web servers for websites. https:\/\/w3techs.com\/technologies\/overview\/web_server\/all May 14 2017."},{"key":"e_1_3_2_1_76_1","unstructured":"Andrew Whalley and Devon O'Brien. Google Security Blog: https:\/\/security.googleblog.com\/2017\/07\/final-removal-of-trust-in-wosign-and.html 20 July 2017.  Andrew Whalley and Devon O'Brien. Google Security Blog: https:\/\/security.googleblog.com\/2017\/07\/final-removal-of-trust-in-wosign-and.html 20 July 2017."},{"key":"e_1_3_2_1_77_1","unstructured":"Wikipedia. Network Solutions Controversies. https:\/\/en.wikipedia.org\/w\/index.php?title=Network_Solutions&oldid=799250032#Controversies 26 September 2017.  Wikipedia. Network Solutions Controversies. https:\/\/en.wikipedia.org\/w\/index.php?title=Network_Solutions&oldid=799250032#Controversies 26 September 2017."},{"key":"e_1_3_2_1_78_1","unstructured":"Kathleen Wilson. Mozilla blog post: https:\/\/blog.mozilla.org\/security\/2016\/10\/24\/distrusting-new-wosign-and-startcom-certificates\/ 24 October 2016.  Kathleen Wilson. Mozilla blog post: https:\/\/blog.mozilla.org\/security\/2016\/10\/24\/distrusting-new-wosign-and-startcom-certificates\/ 24 October 2016."},{"key":"e_1_3_2_1_79_1","doi-asserted-by":"publisher","DOI":"10.1145\/1644893.1644896"},{"key":"e_1_3_2_1_80_1","doi-asserted-by":"publisher","DOI":"10.1145\/2663716.2663758"},{"key":"e_1_3_2_1_81_1","volume-title":"John Heidemann. Measuring the Latency and Pervasiveness of TLS Certificate Revocation. In Proc. 17th International Conference on Passive and Active Measurement (PAM'16)","author":"Zhu Liang","year":"2016"},{"key":"e_1_3_2_1_82_1","volume-title":"John Heidemann. Measuring DANE TLSA Deployment. In Proc. 7th Int. Workshop Traffic Monitoring and Analysis (TMA)","author":"Zhu Liang","year":"2015"},{"key":"e_1_3_2_1_83_1","unstructured":"ZMapv6 on GitHub. https:\/\/github.com\/tumi8\/zmap May 2017.  ZMapv6 on GitHub. https:\/\/github.com\/tumi8\/zmap May 2017."}],"event":{"name":"IMC '17: Internet Measurement Conference","location":"London United Kingdom","acronym":"IMC '17","sponsor":["SIGMETRICS ACM Special Interest Group on Measurement and Evaluation","SIGCOMM ACM Special Interest Group on Data Communication","USENIX Assoc USENIX Assoc"]},"container-title":["Proceedings of the 2017 Internet Measurement Conference"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3131365.3131401","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3131365.3131401","content-type":"application\/pdf","content-version":"vor","intended-application":"syndication"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3131365.3131401","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T02:13:40Z","timestamp":1750212820000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3131365.3131401"}},"subtitle":["HTTPS security after diginotar"],"short-title":[],"issued":{"date-parts":[[2017,11]]},"references-count":82,"alternative-id":["10.1145\/3131365.3131401","10.1145\/3131365"],"URL":"https:\/\/doi.org\/10.1145\/3131365.3131401","relation":{},"subject":[],"published":{"date-parts":[[2017,11]]},"assertion":[{"value":"2017-11-01","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}