{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,7,1]],"date-time":"2026-07-01T09:49:25Z","timestamp":1782899365582,"version":"3.54.5"},"reference-count":34,"publisher":"IEEE","license":[{"start":{"date-parts":[[2026,5,24]],"date-time":"2026-05-24T00:00:00Z","timestamp":1779580800000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2026,5,24]],"date-time":"2026-05-24T00:00:00Z","timestamp":1779580800000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2026,5,24]]},"DOI":"10.23919\/ifipnetworking70592.2026.11579066","type":"proceedings-article","created":{"date-parts":[[2026,6,30]],"date-time":"2026-06-30T21:15:34Z","timestamp":1782854134000},"page":"1-6","source":"Crossref","is-referenced-by-count":0,"title":["Securing the Web with HSTS-Enforced"],"prefix":"10.23919","author":[{"given":"Aaron van","family":"Diepen","sequence":"first","affiliation":[{"name":"Delft University of Technology,Delft,The Netherlands"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Adrian","family":"Zapletal","sequence":"additional","affiliation":[{"name":"Delft University of Technology,Delft,The Netherlands"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Fernando","family":"Kuipers","sequence":"additional","affiliation":[{"name":"Delft University of Technology,Delft,The Netherlands"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"263","reference":[{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.17487\/rfc2818"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.17487\/rfc6797"},{"key":"ref3","article-title":"Securing the Web with HSTS-Enforced","author":"Aaron van Diepen","year":"2026"},{"key":"ref4","article-title":"New Tricks for Defeating SSL in Practice","volume-title":"Black Hat DC","author":"Marlinspike","year":"2009"},{"key":"ref5","article-title":"More Tricks for Defeating SSL in Practice","volume-title":"Black Hat USA","author":"Marlinspike","year":"2009"},{"key":"ref6","article-title":"HSTS Preload List Submission","volume-title":"HSTS Preload List Submission","year":"2012"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.17487\/rfc9460"},{"key":"ref8","article-title":"HTTPS-First Upgrades to Secure Connections","volume-title":"Mozilla Support","year":"2025"},{"key":"ref9","article-title":"HTTPS-Only Mode in Firefox","volume-title":"Mozilla Support","year":"2025"},{"key":"ref10","article-title":"Mission Accomplished? HTTPS Security after DigiNotar","author":"Amann","year":"2017","journal-title":"ACM IMC"},{"key":"ref11","article-title":"Measuring the Rapid Growth of HSTS and HPKP Deployments","author":"Petrov","year":"2017","journal-title":"IET CANS"},{"key":"ref12","article-title":"The Security Lottery: Measuring Client-Side Web Security Inconsistencies","author":"Roth","year":"2022","journal-title":"USENIX Security"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1109\/SPW54247.2022.9833880"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1049\/iet-ifs.2016.0621"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.23919\/CYCON.2018.8405025"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1145\/3178876.3186091"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1049\/iet-ifs.2017.0030"},{"key":"ref18","article-title":"HSTS Supports Targeted Surveillance","author":"Syverson","year":"2018","journal-title":"USENIX FOCI"},{"key":"ref19","article-title":"Chromium","volume-title":"Chromium","year":"2024"},{"key":"ref20","article-title":"Firefox Preload List","year":"2024"},{"key":"ref21","article-title":"A Longitudinal, End-to-End View of the DNSSEC Ecosystem","author":"Chung","year":"2017","journal-title":"USENIX Security"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-48965-0_43"},{"key":"ref23","article-title":"One key to sign them all considered vulnerable: Evaluation of DNSSEC in the internet","author":"Shulman","year":"2017","journal-title":"USENIX NSDI"},{"key":"ref24","article-title":"HTTPS Everywhere","year":"2010"},{"key":"ref25","article-title":"Multi-Perspective Validation Improves Domain Validation Security","volume-title":"Let\u2019s Encrypt","author":"Aas","year":"2020"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.14722\/madweb.2025.23001"},{"key":"ref27","article-title":"HSTS-Enforced Artifacts","author":"van Diepen","year":"2026"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1109\/JRPROC.1952.273898"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1145\/367390.367400"},{"key":"ref30","article-title":"PowerDNS","year":"2024"},{"key":"ref31","article-title":"BIND","volume-title":"Internet Systems Consortium","year":"2024"},{"key":"ref32","article-title":"Unbound","year":"2024"},{"key":"ref33","article-title":"List of Accredited Registrars","year":"2024"},{"key":"ref34","article-title":"Root Zone File","year":"2024"}],"event":{"name":"2026 IFIP Networking Conference (IFIP Networking)","location":"Lugano, Switzerland","start":{"date-parts":[[2026,5,24]]},"end":{"date-parts":[[2026,5,27]]}},"container-title":["2026 IFIP Networking Conference (IFIP Networking)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx8\/11578949\/11578438\/11579066.pdf?arnumber=11579066","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,7,1]],"date-time":"2026-07-01T09:21:44Z","timestamp":1782897704000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/11579066\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026,5,24]]},"references-count":34,"URL":"https:\/\/doi.org\/10.23919\/ifipnetworking70592.2026.11579066","relation":{},"subject":[],"published":{"date-parts":[[2026,5,24]]}}}