{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T04:26:47Z","timestamp":1750220807828,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":28,"publisher":"ACM","license":[{"start":{"date-parts":[[2019,11,11]],"date-time":"2019-11-11T00:00:00Z","timestamp":1573430400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/100000001","name":"NSF","doi-asserted-by":"publisher","award":["CNS-1564143,CNS-1901325"],"award-info":[{"award-number":["CNS-1564143,CNS-1901325"]}],"id":[{"id":"10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2019,11,11]]},"DOI":"10.1145\/3338498.3358655","type":"proceedings-article","created":{"date-parts":[[2019,11,11]],"date-time":"2019-11-11T18:15:00Z","timestamp":1573496100000},"page":"87-92","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":14,"title":["When Certificate Transparency Is Too Transparent"],"prefix":"10.1145","author":[{"given":"Richard","family":"Roberts","sequence":"first","affiliation":[{"name":"University of Maryland, College Park, College Park, MD, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Dave","family":"Levin","sequence":"additional","affiliation":[{"name":"University of Maryland, College Park, College Park, MD, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2019,11,11]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"2018. The Spamhaus Project: The World's Most Abused TLDs.https:\/\/www.spamhaus.org\/statistics\/tlds\/.  2018. The Spamhaus Project: The World's Most Abused TLDs.https:\/\/www.spamhaus.org\/statistics\/tlds\/."},{"key":"e_1_3_2_1_2_1","volume-title":"Seven Months' Worth of Mistakes: A Longitudinal Study of Typosquatting Abuse. In Network and Distributed System Security Symposium (NDSS).","author":"Agten Pieter","year":"2015","unstructured":"Pieter Agten , Wouter Joosen , Frank Piessens , and Nick Nikiforakis . 2015 . Seven Months' Worth of Mistakes: A Longitudinal Study of Typosquatting Abuse. In Network and Distributed System Security Symposium (NDSS). Pieter Agten, Wouter Joosen, Frank Piessens, and Nick Nikiforakis. 2015. Seven Months' Worth of Mistakes: A Longitudinal Study of Typosquatting Abuse. In Network and Distributed System Security Symposium (NDSS)."},{"key":"e_1_3_2_1_3_1","unstructured":"Alexa Top Sites API [n.d.]. Alexa Top Sites API.https:\/\/aws.amazon.com\/alexa-top-sites\/.  Alexa Top Sites API [n.d.]. Alexa Top Sites API.https:\/\/aws.amazon.com\/alexa-top-sites\/."},{"key":"e_1_3_2_1_4_1","unstructured":"Bharath. 2017. Certificate Transparency Part 3 -- The dark side. Online: https:\/\/blog.appsecco.com\/certificate-transparency-part-3-the-dark-side-9d401809b025.  Bharath. 2017. Certificate Transparency Part 3 -- The dark side. Online: https:\/\/blog.appsecco.com\/certificate-transparency-part-3-the-dark-side-9d401809b025."},{"key":"e_1_3_2_1_5_1","unstructured":"Mark Burnett. 2015. Today I Am Releasing Ten Million Passwords. https:\/\/xato.net\/today-i-am-releasing-ten-million-passwords-b6278bbe7495.  Mark Burnett. 2015. Today I Am Releasing Ten Million Passwords. https:\/\/xato.net\/today-i-am-releasing-ten-million-passwords-b6278bbe7495."},{"key":"e_1_3_2_1_6_1","volume-title":"Measurement and Analysis of Private Key Sharing in the HTTPS Ecosystem. In ACM Conference on Computer and Communications Security (CCS).","author":"Cangialosi Frank","year":"2016","unstructured":"Frank Cangialosi , Taejoong Chung , David Choffnes , Dave Levin , Bruce M. Maggs , Alan Mislove , and Christo Wilson . 2016 . Measurement and Analysis of Private Key Sharing in the HTTPS Ecosystem. In ACM Conference on Computer and Communications Security (CCS). Frank Cangialosi, Taejoong Chung, David Choffnes, Dave Levin, Bruce M. Maggs, Alan Mislove, and Christo Wilson. 2016. Measurement and Analysis of Private Key Sharing in the HTTPS Ecosystem. In ACM Conference on Computer and Communications Security (CCS)."},{"key":"e_1_3_2_1_7_1","unstructured":"Gurpreet Dhillon Lemuria Carter and Javad Abed. 2016. Defining Objectives for Securing the Internet of Things: A Value-Focused Thinking Approach.  Gurpreet Dhillon Lemuria Carter and Javad Abed. 2016. Defining Objectives for Securing the Internet of Things: A Value-Focused Thinking Approach."},{"key":"e_1_3_2_1_8_1","unstructured":"Discovery's TV Everywhere \"GO\" Apps Now Available On Select Samsung SmartTVs 2018. Discovery's TV Everywhere \"GO\" Apps Now Available On SelectSamsung Smart TVs.https:\/\/corporate.discovery.com\/discovery-newsroom\/discoverys-tv-everywhere-go-apps-now-available-on-select-samsung-smart-tvs\/.  Discovery's TV Everywhere \"GO\" Apps Now Available On Select Samsung SmartTVs 2018. Discovery's TV Everywhere \"GO\" Apps Now Available On SelectSamsung Smart TVs.https:\/\/corporate.discovery.com\/discovery-newsroom\/discoverys-tv-everywhere-go-apps-now-available-on-select-samsung-smart-tvs\/."},{"key":"e_1_3_2_1_9_1","volume":"201","author":"Durumeric Zakir","unstructured":"Zakir Durumeric , David Adrian , Ariana Mirian , Michael Bailey , and J. Alex Halderman. 201 5. A Search Engine Backed by Internet-Wide Scanning. In ACM Conference on Computer and Communications Security (CCS). Zakir Durumeric, David Adrian, Ariana Mirian, Michael Bailey, and J. Alex Halderman. 2015. A Search Engine Backed by Internet-Wide Scanning. In ACM Conference on Computer and Communications Security (CCS).","journal-title":"J. Alex Halderman."},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1515\/popets-2017-0052"},{"key":"e_1_3_2_1_11_1","unstructured":"Federal Trade Commission. [n.d.]. Multilevel Marketing. Online: https:\/\/www.ftc.gov\/tips-advice\/business-center\/guidance\/multilevel-marketing.  Federal Trade Commission. [n.d.]. Multilevel Marketing. Online: https:\/\/www.ftc.gov\/tips-advice\/business-center\/guidance\/multilevel-marketing."},{"key":"e_1_3_2_1_12_1","volume-title":"In Log We Trust: Revealing Poor Security Practices with Certificate Transparency Logs and Internet Measurements. In Passive and Active Network Measurement Workshop (PAM).","author":"Gasser Oliver","year":"2018","unstructured":"Oliver Gasser , Benjamin Hof , Max Helm , Maciej Korczynski , Ralph Holz , and Georg Carle . 2018 . In Log We Trust: Revealing Poor Security Practices with Certificate Transparency Logs and Internet Measurements. In Passive and Active Network Measurement Workshop (PAM). Oliver Gasser, Benjamin Hof, Max Helm, Maciej Korczynski, Ralph Holz, and Georg Carle. 2018. In Log We Trust: Revealing Poor Security Practices with Certificate Transparency Logs and Internet Measurements. In Passive and Active Network Measurement Workshop (PAM)."},{"key":"e_1_3_2_1_13_1","unstructured":"Google Safe Browsing [n.d.]. Google Safe Browsing.https:\/\/safebrowsing.google.com.  Google Safe Browsing [n.d.]. Google Safe Browsing.https:\/\/safebrowsing.google.com."},{"key":"e_1_3_2_1_14_1","volume-title":"Detecting Credential Spearphishing Attacks in Enterprise Settings. In USENIX Security Symposium.","author":"Ho Grant","year":"2017","unstructured":"Grant Ho , Aashish Sharma , Mobin Javed , Vern Paxson , and David Wagner . 2017 . Detecting Credential Spearphishing Attacks in Enterprise Settings. In USENIX Security Symposium. Grant Ho, Aashish Sharma, Mobin Javed, Vern Paxson, and David Wagner. 2017. Detecting Credential Spearphishing Attacks in Enterprise Settings. In USENIX Security Symposium."},{"key":"e_1_3_2_1_15_1","unstructured":"IBM. [n.d.]. IBM Compose. Online: https:\/\/www.ibm.com\/cloud\/compose.  IBM. [n.d.]. IBM Compose. Online: https:\/\/www.ibm.com\/cloud\/compose."},{"key":"e_1_3_2_1_16_1","volume-title":"Hiding in Plain Sight: A Longitudinal Study of Combosquatting Abuse. In ACM Conference on Computer and Communications Security (CCS).","author":"Kintis Panagiotis","year":"2017","unstructured":"Panagiotis Kintis , Najmeh Miramirkhani , Charles Lever , Yizheng Chen , Roza Romero-G\u00f3mez , Nikolaos Pitropakis , Nick Nikiforakis , and Manos Antonakakis . 2017 . Hiding in Plain Sight: A Longitudinal Study of Combosquatting Abuse. In ACM Conference on Computer and Communications Security (CCS). Panagiotis Kintis, Najmeh Miramirkhani, Charles Lever, Yizheng Chen, Roza Romero-G\u00f3mez, Nikolaos Pitropakis, Nick Nikiforakis, and Manos Antonakakis. 2017. Hiding in Plain Sight: A Longitudinal Study of Combosquatting Abuse. In ACM Conference on Computer and Communications Security (CCS)."},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2017.17"},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"crossref","unstructured":"Ben Laurie Adam Langley and Emilia Kasper. 2013. Certificate Transparency. RFC 6962. https:\/\/www.ietf.org\/rfc\/rfc6962.txt  Ben Laurie Adam Langley and Emilia Kasper. 2013. Certificate Transparency. RFC 6962. https:\/\/www.ietf.org\/rfc\/rfc6962.txt","DOI":"10.17487\/rfc6962"},{"key":"e_1_3_2_1_19_1","unstructured":"Mark Kantrowitz. [n.d.] a. List of Common Female Names. Online: https:\/\/www.cs.cmu.edu\/afs\/cs\/project\/ai-repository\/ai\/areas\/nlp\/corpora\/names\/female.txt.  Mark Kantrowitz. [n.d.] a. List of Common Female Names. Online: https:\/\/www.cs.cmu.edu\/afs\/cs\/project\/ai-repository\/ai\/areas\/nlp\/corpora\/names\/female.txt."},{"key":"e_1_3_2_1_20_1","unstructured":"Mark Kantrowitz. [n.d.] b. List of Common Male Names. Online: http:\/\/www.cs.cmu.edu\/afs\/cs\/project\/ai-repository\/ai\/areas\/nlp\/corpora\/names\/male.txt.  Mark Kantrowitz. [n.d.] b. List of Common Male Names. Online: http:\/\/www.cs.cmu.edu\/afs\/cs\/project\/ai-repository\/ai\/areas\/nlp\/corpora\/names\/male.txt."},{"key":"e_1_3_2_1_21_1","unstructured":"Microsoft. [n.d.] a. Microsoft Cloud App Security overview. Online: https:\/\/docs.microsoft.com\/en-us\/cloud-app-security\/what-is-cloud-app-security.  Microsoft. [n.d.] a. Microsoft Cloud App Security overview. Online: https:\/\/docs.microsoft.com\/en-us\/cloud-app-security\/what-is-cloud-app-security."},{"key":"e_1_3_2_1_22_1","unstructured":"Microsoft. [n.d.] b. Protect apps with Microsoft Cloud App Security Conditional Access App Control. Online: https:\/\/docs.microsoft.com\/en-us\/cloud-app-security\/proxy-intro-aad.  Microsoft. [n.d.] b. Protect apps with Microsoft Cloud App Security Conditional Access App Control. Online: https:\/\/docs.microsoft.com\/en-us\/cloud-app-security\/proxy-intro-aad."},{"key":"e_1_3_2_1_23_1","volume-title":"Simon","author":"Mitnick Kevin","year":"2002","unstructured":"Kevin Mitnick and William L . Simon . 2002 . The Art of Deception. Wiley Publishing Inc . Kevin Mitnick and William L. Simon. 2002. The Art of Deception. Wiley Publishing Inc."},{"key":"e_1_3_2_1_24_1","unstructured":"Mozilla CT Policy 2014. PKI:CT. Mozilla Wiki.https:\/\/wiki.mozilla.org\/PKI:CThttps:\/\/wiki.mozilla.org\/PKI:CT.  Mozilla CT Policy 2014. PKI:CT. Mozilla Wiki.https:\/\/wiki.mozilla.org\/PKI:CThttps:\/\/wiki.mozilla.org\/PKI:CT."},{"key":"e_1_3_2_1_25_1","volume-title":"The Rise of Certificate Transparency and Its Implications on the Internet Ecosystem. In ACM Internet Measurement Conference (IMC).","author":"Scheitle Quirin","year":"2018","unstructured":"Quirin Scheitle , Oliver Gasser , Theodor Nolte , Johanna Amann , Lexi Brent , Georg Carle , Ralph Holz , Thomas C. Schmidt , and Matthias W\u00e4hlisch . 2018 . The Rise of Certificate Transparency and Its Implications on the Internet Ecosystem. In ACM Internet Measurement Conference (IMC). Quirin Scheitle, Oliver Gasser, Theodor Nolte, Johanna Amann, Lexi Brent, Georg Carle, Ralph Holz, Thomas C. Schmidt, and Matthias W\u00e4hlisch. 2018. The Rise of Certificate Transparency and Its Implications on the Internet Ecosystem. In ACM Internet Measurement Conference (IMC)."},{"key":"e_1_3_2_1_26_1","volume-title":"Announcement: Requiring Certificate Transparency in 2017. Certificate Transparency Policy. https:\/\/groups.google.com\/a\/chromium.org\/forum\/topic\/ct-policy\/78N3SMcqUGw.","author":"Sleevi Ryan","year":"2016","unstructured":"Ryan Sleevi . 2016 . Announcement: Requiring Certificate Transparency in 2017. Certificate Transparency Policy. https:\/\/groups.google.com\/a\/chromium.org\/forum\/topic\/ct-policy\/78N3SMcqUGw. Ryan Sleevi. 2016. Announcement: Requiring Certificate Transparency in 2017. Certificate Transparency Policy. https:\/\/groups.google.com\/a\/chromium.org\/forum\/topic\/ct-policy\/78N3SMcqUGw."},{"key":"e_1_3_2_1_27_1","unstructured":"United States Census Bureau. [n.d.]. Decennial Census Surname Files. Online: https:\/\/www.census.gov\/data\/developers\/data-sets\/surnames.html.  United States Census Bureau. [n.d.]. Decennial Census Surname Files. Online: https:\/\/www.census.gov\/data\/developers\/data-sets\/surnames.html."},{"key":"e_1_3_2_1_28_1","volume":"201","author":"VanderSloot Benjamin","unstructured":"Benjamin VanderSloot , Johanna Amann , Matthew Bernhard , Zakir Durumeric , Michael Bailey , and J. Alex Halderman. 201 6. Towards a Complete View of the Certificate Ecosystem. In ACM Internet Measurement Conference (IMC). Benjamin VanderSloot, Johanna Amann, Matthew Bernhard, Zakir Durumeric, Michael Bailey, and J. Alex Halderman. 2016. Towards a Complete View of the Certificate Ecosystem. In ACM Internet Measurement Conference (IMC).","journal-title":"J. Alex Halderman."}],"event":{"name":"CCS '19: 2019 ACM SIGSAC Conference on Computer and Communications Security","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"],"location":"London United Kingdom","acronym":"CCS '19"},"container-title":["Proceedings of the 18th ACM Workshop on Privacy in the Electronic Society"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3338498.3358655","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3338498.3358655","content-type":"application\/pdf","content-version":"vor","intended-application":"syndication"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3338498.3358655","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T23:12:48Z","timestamp":1750201968000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3338498.3358655"}},"subtitle":["Analyzing Information Leakage in HTTPS Domain Names"],"short-title":[],"issued":{"date-parts":[[2019,11,11]]},"references-count":28,"alternative-id":["10.1145\/3338498.3358655","10.1145\/3338498"],"URL":"https:\/\/doi.org\/10.1145\/3338498.3358655","relation":{},"subject":[],"published":{"date-parts":[[2019,11,11]]},"assertion":[{"value":"2019-11-11","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}