{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,9]],"date-time":"2026-01-09T03:33:57Z","timestamp":1767929637511,"version":"3.49.0"},"publisher-location":"New York, NY, USA","reference-count":57,"publisher":"ACM","license":[{"start":{"date-parts":[[2021,11,12]],"date-time":"2021-11-12T00:00:00Z","timestamp":1636675200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"name":"Deutsche Forschungsgemeinschaft (DFG)","award":["KU 1434\/10-2"],"award-info":[{"award-number":["KU 1434\/10-2"]}]},{"name":"European Research Council (ERC)","award":["CIRCUS-683032"],"award-info":[{"award-number":["CIRCUS-683032"]}]},{"name":"Office of Naval Research (ONR)","award":["N000141812618"],"award-info":[{"award-number":["N000141812618"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2021,11,12]]},"DOI":"10.1145\/3460120.3484588","type":"proceedings-article","created":{"date-parts":[[2021,11,13]],"date-time":"2021-11-13T12:05:27Z","timestamp":1636805127000},"page":"2601-2617","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":11,"title":["An In-Depth Symbolic Security Analysis of the ACME Standard"],"prefix":"10.1145","author":[{"given":"Karthikeyan","family":"Bhargavan","sequence":"first","affiliation":[{"name":"INRIA Paris, Paris, France"}]},{"given":"Abhishek","family":"Bichhawat","sequence":"additional","affiliation":[{"name":"IIT Gandhinagar, Gandhinagar, India"}]},{"given":"Quoc Huy","family":"Do","sequence":"additional","affiliation":[{"name":"University of Stuttgart & GLIWA GmbH, Stuttgart, Germany"}]},{"given":"Pedram","family":"Hosseyni","sequence":"additional","affiliation":[{"name":"University of Stuttgart, Stuttgart, Germany"}]},{"given":"Ralf","family":"K\u00fcsters","sequence":"additional","affiliation":[{"name":"University of Stuttgart, Stuttgart, Germany"}]},{"given":"Guido","family":"Schmitz","sequence":"additional","affiliation":[{"name":"University of Stuttgart and Royal Holloway University of London, Stuttgart, Germany"}]},{"given":"Tim","family":"W\u00fcrtele","sequence":"additional","affiliation":[{"name":"University of Stuttgart, Stuttgart, Germany"}]}],"member":"320","published-online":{"date-parts":[[2021,11,13]]},"reference":[{"key":"e_1_3_2_2_1_1","doi-asserted-by":"publisher","DOI":"10.1145\/3319535.3363192"},{"key":"e_1_3_2_2_2_1","unstructured":"Andrew Ayer. 2015. ACME signature misuse vulnerability in draft-barnes-acme-04. https:\/\/mailarchive.ietf.org\/arch\/msg\/acme\/F71iz6qq1o_QPVhJCV4dqWf-4Yc\/"},{"key":"e_1_3_2_2_3_1","doi-asserted-by":"publisher","DOI":"10.3233\/JCS-130493"},{"key":"e_1_3_2_2_4_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP40001.2021.00008"},{"key":"e_1_3_2_2_5_1","doi-asserted-by":"publisher","unstructured":"Richard Barnes Jacob Hoffman-Andrews Daniel McCarney and James Kasten. 2019. Automatic Certificate Management Environment (ACME). RFC 8555. https:\/\/doi.org\/10.17487\/RFC8555","DOI":"10.17487\/RFC8555"},{"key":"e_1_3_2_2_6_1","doi-asserted-by":"publisher","DOI":"10.1145\/2535838.2535847"},{"key":"e_1_3_2_2_7_1","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2016.2601610"},{"key":"e_1_3_2_2_8_1","doi-asserted-by":"publisher","DOI":"10.1145\/1890028.1890031"},{"key":"e_1_3_2_2_9_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2015.39"},{"key":"e_1_3_2_2_10_1","volume-title":"Pedram Hosseyni, Ralf K\u00fcsters, Guido Schmitz, and Tim W\u00fcrtele.","author":"Bhargavan Karthikeyan","year":"2021","unstructured":"Karthikeyan Bhargavan, Abhishek Bichhawat, Quoc Huy Do, Pedram Hosseyni, Ralf K\u00fcsters, Guido Schmitz, and Tim W\u00fcrtele. 2021. DY? ACME Code Repository. https:\/\/github.com\/reprosec\/acme-case-study"},{"key":"e_1_3_2_2_11_1","doi-asserted-by":"publisher","DOI":"10.1109\/EuroSP51992.2021.00042"},{"key":"e_1_3_2_2_12_1","volume-title":"Pedram Hosseyni, Ralf K\u00fcsters, Guido Schmitz, and Tim W\u00fcrtele.","author":"Bhargavan Karthikeyan","year":"2021","unstructured":"Karthikeyan Bhargavan, Abhishek Bichhawat, Quoc Huy Do, Pedram Hosseyni, Ralf K\u00fcsters, Guido Schmitz, and Tim W\u00fcrtele. 2021. DY? Code Repository. https:\/\/github.com\/reprosec\/dolev-yao-star"},{"key":"e_1_3_2_2_13_1","volume-title":"Pedram Hosseyni, Ralf K\u00fcsters, Guido Schmitz, and Tim W\u00fcrtele.","author":"Bhargavan Karthikeyan","year":"2021","unstructured":"Karthikeyan Bhargavan, Abhishek Bichhawat, Quoc Huy Do, Pedram Hosseyni, Ralf K\u00fcsters, Guido Schmitz, and Tim W\u00fcrtele. 2021. ATutorial-Style Introduction to DY?. In Protocols, Logic, and Strands: Essays Dedicated to Joshua Guttman on the Occasion of His 66.66 Birthday. Springer. To appear."},{"key":"e_1_3_2_2_14_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2017.26"},{"key":"e_1_3_2_2_15_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-70972-7_32"},{"key":"e_1_3_2_2_16_1","doi-asserted-by":"publisher","DOI":"10.1145\/1706299.1706350"},{"key":"e_1_3_2_2_17_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2013.37"},{"key":"e_1_3_2_2_18_1","doi-asserted-by":"publisher","DOI":"10.1007\/978--3--662--44381--1_14"},{"key":"e_1_3_2_2_19_1","doi-asserted-by":"publisher","DOI":"10.1007\/3--540--49162--7_12"},{"key":"e_1_3_2_2_20_1","doi-asserted-by":"publisher","DOI":"10.1561\/3300000004"},{"key":"e_1_3_2_2_21_1","unstructured":"Buypass. 2020. Buypass Go SSL - Technical information. https:\/\/www.buypass. com\/ssl\/resources\/go-ssl-technical-specification"},{"key":"e_1_3_2_2_22_1","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3134063"},{"key":"e_1_3_2_2_23_1","unstructured":"Daniel McCarney. 2017. Validating challenges from multiple network vantage points. https:\/\/community.letsencrypt.org\/t\/validating-challenges-frommultiple-network-vantage-points\/40955"},{"key":"e_1_3_2_2_24_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2017.58"},{"key":"e_1_3_2_2_25_1","unstructured":"DigiCert. 2020. DigiCert - Certification Management. https:\/\/www.digicert.com\/certificate-management\/"},{"key":"e_1_3_2_2_26_1","doi-asserted-by":"publisher","DOI":"10.1109\/TIT.1983.1056650"},{"key":"e_1_3_2_2_27_1","doi-asserted-by":"publisher","DOI":"10.1007\/978--3-030--11039-0_11"},{"key":"e_1_3_2_2_28_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2019.00067"},{"key":"e_1_3_2_2_29_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2014.49"},{"key":"e_1_3_2_2_30_1","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978385"},{"key":"e_1_3_2_2_31_1","doi-asserted-by":"publisher","DOI":"10.1109\/CSF.2017.20"},{"key":"e_1_3_2_2_32_1","doi-asserted-by":"publisher","DOI":"10.1145\/2046707.2046746"},{"key":"e_1_3_2_2_33_1","unstructured":"GlobalSign. 2021. GlobalSign - Auto Enrollment Gateway. https:\/\/www. globalsign.com\/en\/auto-enrollment-gateway"},{"key":"e_1_3_2_2_34_1","doi-asserted-by":"publisher","DOI":"10.1145\/3320269.3384724"},{"key":"e_1_3_2_2_35_1","unstructured":"Jacob Hoffman-Andrews. 2020. 2020.02.29 CAA Rechecking Bug. https:\/\/community.letsencrypt.org\/t\/2020-02--29-caa-rechecking-bug\/114591"},{"key":"e_1_3_2_2_36_1","doi-asserted-by":"publisher","DOI":"10.1145\/3319535.3339813"},{"key":"e_1_3_2_2_37_1","doi-asserted-by":"publisher","unstructured":"Mike Jones John Bradley and Nat Sakimura. 2015. JSON Web Signature (JWS). RFC 7515. https:\/\/doi.org\/10.17487\/RFC7515","DOI":"10.17487\/RFC7515"},{"key":"e_1_3_2_2_38_1","unstructured":"Hemi Leibowitz Amir Herzberg and Ewa Syta. 2019. Provable Secure PKI Schemes. Cryptology ePrint Archive Report 2019\/807. https:\/\/eprint.iacr.org\/2019\/807."},{"key":"e_1_3_2_2_39_1","unstructured":"Let's Encrypt. 2018. ACME v2 Production Environment & Wildcards. https:\/\/community.letsencrypt.org\/t\/acme-v2-production-environmentwildcards\/55578"},{"key":"e_1_3_2_2_40_1","unstructured":"Let's Encrypt. 2020. Let's Encrypt Has Issued a Billion Certificates. https:\/\/letsencrypt.org\/2020\/02\/27\/one-billion-certs.html"},{"key":"e_1_3_2_2_41_1","unstructured":"Let's Encrypt. 2021. ACME Client Implementations. https:\/\/letsencrypt.org\/docs\/client-options"},{"key":"e_1_3_2_2_42_1","volume-title":"Boulder: An ACME-based certificate authority, written in Go. https:\/\/github.com\/letsencrypt\/boulder","author":"Encrypt Let's","year":"2021","unstructured":"Let's Encrypt. 2021. Boulder: An ACME-based certificate authority, written in Go. https:\/\/github.com\/letsencrypt\/boulder"},{"key":"e_1_3_2_2_43_1","unstructured":"Let's Encrypt. 2021. Let's Encrypt certification authority. https:\/\/letsencrypt.org"},{"key":"e_1_3_2_2_44_1","unstructured":"Let's Encrypt. 2021. Pebble ACME Server. https:\/\/github.com\/letsencrypt\/pebble"},{"key":"e_1_3_2_2_45_1","doi-asserted-by":"publisher","DOI":"10.1007\/978--3--642--39799--8_48"},{"key":"e_1_3_2_2_46_1","doi-asserted-by":"publisher","DOI":"10.1023\/B:DESI.0000036250.18062.3f"},{"key":"e_1_3_2_2_47_1","doi-asserted-by":"publisher","DOI":"10.1145\/359657.359659"},{"key":"e_1_3_2_2_48_1","volume-title":"Third International Conference, ACNS 2005, New York, NY, USA, June 7--10, 2005, Proceedings (Lecture Notes in Computer Science","volume":"150","author":"Pornin Thomas","unstructured":"Thomas Pornin and Julien P. Stern. 2005. Digital Signatures Do Not Guarantee Exclusive Ownership. In Applied Cryptography and Network Security, Third International Conference, ACNS 2005, New York, NY, USA, June 7--10, 2005, Proceedings (Lecture Notes in Computer Science, Vol. 3531). Springer, Berlin, 138--150."},{"key":"e_1_3_2_2_49_1","unstructured":"REPROSEC. 2021. REPROSEC Project. https:\/\/reprosec.org\/"},{"key":"e_1_3_2_2_50_1","doi-asserted-by":"publisher","unstructured":"Roland Bracewell Shoemaker. 2020. Automated Certificate Management Environment (ACME) TLS Application-Layer Protocol Negotiation (ALPN) Challenge Extension. RFC 8737. https:\/\/doi.org\/10.17487\/RFC8737","DOI":"10.17487\/RFC8737"},{"key":"e_1_3_2_2_51_1","doi-asserted-by":"publisher","DOI":"10.1145\/2046660.2046664"},{"key":"e_1_3_2_2_52_1","volume-title":"Proceedings of the 21th USENIX Security Symposium","author":"Somorovsky Juraj","year":"2012","unstructured":"Juraj Somorovsky, Andreas Mayer, J\u00f6rg Schwenk, Marco Kampmann, and Meiko Jensen. 2012. On Breaking SAML: Be Whoever You Want to Be. In Proceedings of the 21th USENIX Security Symposium, Bellevue, WA, USA, August 8--10, 2012. USENIX Association, Berkeley, CA, USA, 397--412."},{"key":"e_1_3_2_2_53_1","doi-asserted-by":"publisher","DOI":"10.1145\/2837614.2837655"},{"key":"e_1_3_2_2_54_1","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3134027"},{"key":"e_1_3_2_2_55_1","doi-asserted-by":"publisher","DOI":"10.1109\/2.108052"},{"key":"e_1_3_2_2_56_1","doi-asserted-by":"publisher","DOI":"10.1093\/comjnl\/bxw039"},{"key":"e_1_3_2_2_57_1","unstructured":"ZeroSSL. 2021. ACME Automation. https:\/\/zerossl.com\/features\/acme\/"}],"event":{"name":"CCS '21: 2021 ACM SIGSAC Conference on Computer and Communications Security","location":"Virtual Event Republic of Korea","acronym":"CCS '21","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"]},"container-title":["Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3460120.3484588","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3460120.3484588","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,11,18]],"date-time":"2025-11-18T20:44:33Z","timestamp":1763498673000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3460120.3484588"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2021,11,12]]},"references-count":57,"alternative-id":["10.1145\/3460120.3484588","10.1145\/3460120"],"URL":"https:\/\/doi.org\/10.1145\/3460120.3484588","relation":{},"subject":[],"published":{"date-parts":[[2021,11,12]]},"assertion":[{"value":"2021-11-13","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}