an end to end measurement of certificate revocation in
play

An End-to-End Measurement of Certificate Revocation in the Webs PKI - PowerPoint PPT Presentation

Feb 13, 2023 •660 likes •1.33k views

An End-to-End Measurement of Certificate Revocation in the Webs PKI Yabing Liu*, Will Tome*, Liang Zhang*, David Choffnes*, Dave Levin , Bruce Maggs , Alan Mislove*, Aaron Schulman , Christo Wilson* *Northeastern University

  1. An End-to-End Measurement of Certificate Revocation in the Web’s PKI Yabing Liu*, Will Tome*, Liang Zhang*, David Choffnes*, Dave Levin † , Bruce Maggs ‡ , Alan Mislove*, Aaron Schulman § , Christo Wilson* *Northeastern University † University of Maryland § Stanford University ‡ Duke University and Akamai Technologies

  2. Public Key Infrastructures (PKIs) How can users truly know with whom they are communicating? Browser Website 2

  3. Public Key Infrastructures (PKIs) How can users truly know with whom they are communicating? Browser Website 2

  4. Public Key Infrastructures (PKIs) How can users truly know with whom they are communicating? Browser Website 2

  5. Public Key Infrastructures (PKIs) How can users truly know with whom they are communicating? Browser Website Certificate Authority 2

  6. Public Key Infrastructures (PKIs) How can users truly know with whom they are communicating? Browser Website Vetting Certificate Authority 2

  7. 
 Public Key Infrastructures (PKIs) How can users truly know with whom they are communicating? Browser Website Certificate Authority The owner of is indeed BoA Certificate 2

  8. Public Key Infrastructures (PKIs) How can users truly know with whom they are communicating? Browser Website Certificate Certificate Certificate Authority 2

  9. Certificate revocation What happens when a certificate is no longer valid? Browser Website Certificate Certificate Authority 3

  10. Certificate revocation What happens when a certificate is no longer valid? Browser Website Certificate Attacker Certificate Certificate Authority 3

  11. Certificate revocation What happens when a certificate is no longer valid? Attacker Browser Certificate Certificate Authority 3

  12. Certificate revocation What happens when a certificate is no longer valid? Attacker Browser Certificate Certificate Certificate Authority 3

  13. Certificate revocation What happens when a certificate is no longer valid? Attacker Browser Certificate Certificate Please 
 Certificate Authority revoke ✗ Certificate Certificate 
 Revocation 3

  14. Certificate revocation What happens when a certificate is no longer valid? Attacker Browser Certificate Certificate Please 
 Certificate Authority revoke ✗ ✗ ✗ Certificate Certificate Certificate ✗ ✗ ✗ Certificate Certificate Certificate 3

  15. Certificate revocation What happens when a certificate is no longer valid? Attacker Browser Certificate Certificate Periodically pull / query Please 
 Certificate Authority revoke (CRL) (OCSP) ✗ ✗ ✗ Certificate Certificate Certificate ✗ ✗ ✗ Certificate Certificate Certificate 3

  16. Certificate revocation What happens when a certificate is no longer valid? ✗ Attacker Browser ✗ Certificate Certificate Certificate Periodically pull / query Please 
 Certificate Authority revoke (CRL) (OCSP) ✗ ✗ ✗ Certificate Certificate Certificate ✗ ✗ ✗ Certificate Certificate Certificate 3

  17. Certificate revocation responsibilities ✗ Administrators must revoke certificates 
 Certificate when keys are compromised Certificate authorities must publish revocations 
 as quickly as possible Browsers must check revocation status 
 on each connection This talk: 
 Do these entities do what they need to do? 4

  18. Outline ✗ Website admin behavior Certificate e.g., what is the frequency of revocation? Certificate authorities behavior e.g., how CAs serve revocations? Client behavior e.g., do browsers check revocations? 5

  19. Dataset Rapid7 IPv4 scans 38M certs (~ 1 /wk for 18mos) 6

  20. Dataset 38M certs Non-CA Rapid7 IPv4 classify scans CA 38M certs (~ 1 /wk for 18mos) 1,946 certs 6

  21. Dataset 38M certs Non-CA Rapid7 IPv4 classify Leaf Set validate scans CA 5M valid certs 38M certs (~ 1 /wk for 18mos) 1,946 certs 6

  22. Dataset 38M certs Non-CA Rapid7 IPv4 classify Leaf Set validate scans CA 5M valid certs 38M certs (~ 1 /wk for 18mos) 1,946 certs Download revocation information daily 6

  23. How frequently are certificates revoked? Percentage of Fresh Certs 12.0 that are Revoked 10.0 8.0 6.0 4.0 2.0 0.0 01/14 03/14 05/14 07/14 09/14 11/14 01/15 03/15 Date 7

  24. How frequently are certificates revoked? Percentage of Fresh Certs 12.0 that are Revoked 10.0 8.0 6.0 4.0 2.0 0.0 01/14 03/14 05/14 07/14 09/14 11/14 01/15 03/15 Date Significant fraction of certificates revoked 
 1% in steady state; more than 8% after Heartbleed 7

  25. How frequently are certificates revoked? 0.006 Fraction of Alive Certs 0.005 that are Revoked 0.004 0.003 0.002 0.001 0.000 01/14 03/14 05/14 07/14 09/14 11/14 01/15 03/15 Date Over 0.5% advertised certificates are revoked 
 Website admins failed to update their servers 8

  26. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Certificate Certificate Authority ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate 9

  27. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Certificate Certificate Authority ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate 9

  28. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Certificate Certificate Authority ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate 9

  29. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate Certificate Authority 9

  30. Cost of obtaining CRLs 1 0.9 0.8 0.7 0.6 CDF 0.5 0.4 0.3 0.2 0.1 0 0.1 1 10 100 1000 10000 CRL Size (KB) 10

  31. Cost of obtaining CRLs 1 0.9 0.8 76MB Apple CRL 0.7 0.6 CDF 0.5 0.4 0.3 0.2 0.1 0 0.1 1 10 100 1000 10000 CRL Size (KB) 10

  32. Cost of obtaining CRLs 1 0.9 0.8 76MB Apple CRL 0.7 0.6 CDF 0.5 0.4 0.3 0.2 Raw 0.1 Weighted 0 0.1 1 10 100 1000 10000 CRL Size (KB) Most CRLs small, but large CRLs downloaded more often 
 Result: 50% of certs have CRLs larger than 45KB 10

  33. CRLs from different CAs Certificates Unique Avg. CRL CA CRLs size (KB) Total Revoked GoDaddy 322 1,050,014 277,500 1,184.0 RapidSSL 5 626,774 2,153 34.5 Comodo 30 447,506 7,169 517.6 PositiveSSL 3 415,075 8,177 441.3 Verisign 37 311,788 15,438 205.2 CAs use only a small number of CRLs 11

  34. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Authority 12

  35. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Certificate Authority 12

  36. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Certificate Certificate Authority 12

  37. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Certificate Certific / ✗ ✔ Certific Certificate Authority ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate 12

  38. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Certific / ✗ ✔ Certific Certificate Authority ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate 12

  39. OCSP prevalence with Revocation Information Fraction of New Certificates 1 0.95 0.9 0.85 0.8 0.75 CRL 0.7 OCSP 0.65 01/11 07/11 01/12 07/12 01/13 07/13 01/14 07/14 01/15 Date Certificate Issued 13

  40. OCSP prevalence with Revocation Information Fraction of New Certificates 1 0.95 0.9 RapidSSL begins supporting OCSP 0.85 0.8 0.75 CRL 0.7 OCSP 0.65 01/11 07/11 01/12 07/12 01/13 07/13 01/14 07/14 01/15 Date Certificate Issued OCSP now universally supported 13

  41. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Authority ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate 14

  42. CRLs, OCSP , and OCSP Stapling Browser Website Certificate Certificate Authority ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate 14

  43. CRLs, OCSP , and OCSP Stapling Browser Website Certificate ✔ Certific Certificate Authority ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate 14

Recommend

An End-to-End Measurement of Certificate Revocation in the Webs PKI Yabing Liu*, Will Tome*,

An End-to-End Measurement of Certificate Revocation in the Webs PKI Yabing Liu*, Will Tome*,

An End-to-End Measurement of Certificate Revocation in the Webs PKI Yabing Liu*, Will Tome*, Liang Zhang*, David Choffnes*, Dave Levin , Bruce Maggs , Alan Mislove*, Aaron Schulman , Christo Wilson* University of Maryland

1.32k views • 67 slides
Revocation Methods Explicit: CRL - Certificate Revocation List Sources: CRL-DP, indirect

Revocation Methods Explicit: CRL - Certificate Revocation List Sources: CRL-DP, indirect

Revocation Methods Explicit: CRL - Certificate Revocation List Sources: CRL-DP, indirect CRL, dynamic CRL-DP Delta-CRL, windowed CRL, etc. Certificate Revocation Tree (CRT) and other Authenticated Data Structures OCSP

745 views • 35 slides
Efficient, Scalable, and Resilient Vehicle-Centric Certificate Revocation List Distribution in

Efficient, Scalable, and Resilient Vehicle-Centric Certificate Revocation List Distribution in

Efficient, Scalable, and Resilient Vehicle-Centric Certificate Revocation List Distribution in VANETs Mohammad Khodaei and Panos Papadimitratos Networked Systems Security Group (NSS) www.ee.kth.se/nss Royal Institute of Technology (KTH)

700 views • 35 slides
Scalable Secret Key and Certificate Revocation List Distribution for Hierarchical Vehicular Ad-hoc

Scalable Secret Key and Certificate Revocation List Distribution for Hierarchical Vehicular Ad-hoc

Scalable Secret Key and Certificate Revocation List Distribution for Hierarchical Vehicular Ad-hoc Networks Kastuv M. Tuladhar Department of Computer Science University of South Dakota kastuv.tuladhar@coyotes.usd.edu November 20, 2018 Thesis

991 views • 68 slides
Lets Revoke Public key infrastructure prevents Man-in-the-Middle attacks Revocation protects

Lets Revoke Public key infrastructure prevents Man-in-the-Middle attacks Revocation protects

Lets Revoke Public key infrastructure prevents Man-in-the-Middle attacks Revocation protects clients from compromised certificates Without revocation, these attacks would go undetected 2 Certificate Revocation Lists (CRLs) Lists of

544 views • 27 slides
Scalable & Resilient Vehicle-Centric Certificate Revocation List Distri- bution in Vehicular

Scalable & Resilient Vehicle-Centric Certificate Revocation List Distri- bution in Vehicular

KTH ROYAL INSTITUTE OF TECHNOLOGY Scalable & Resilient Vehicle-Centric Certificate Revocation List Distri- bution in Vehicular Communication Systems Mohammad Khodaei and Panos Papadimitratos Networked Systems Security Group (NSS)

981 views • 52 slides
A Distributed A Distributed Online Certificate Status Protocol Online Certificate Status

A Distributed A Distributed Online Certificate Status Protocol Online Certificate Status

A Distributed A Distributed Online Certificate Status Protocol Online Certificate Status Protocol Satoshi Koga, Kouichi Sakurai Satoshi Koga Kyushu University, Japan Background Background Certificate Revocation Problem Certificate

349 views • 10 slides
RevCast : Fast, Private Certificate Revocation over FM radio Aaron Schulman Stanford University

RevCast : Fast, Private Certificate Revocation over FM radio Aaron Schulman Stanford University

RevCast : Fast, Private Certificate Revocation over FM radio Aaron Schulman Stanford University Dave Levin Neil Spring University of Maryland University of Maryland Authentication in the PKI Authentication in the PKI I want an

834 views • 81 slides
Certificates, Revocation and the new gTLD's Oh My! Dan Timpson sales@digicert.com

Certificates, Revocation and the new gTLD's Oh My! Dan Timpson sales@digicert.com

Certificates, Revocation and the new gTLD's Oh My! Dan Timpson sales@digicert.com www.digicert.com +1 (801) 877-2100 Focus What is a Certificate Authority? Current situation with gTLD's and internal names

246 views • 13 slides
Public Key Infrastructure Towards a reliable revocation status checking method Royal Holloway,

Public Key Infrastructure Towards a reliable revocation status checking method Royal Holloway,

Public Key Infrastructure Towards a reliable revocation status checking method Royal Holloway, University of London Keith Vella Licari Weekend Conference 2013 keith@vellalicari.com Agenda About me Project approach Certificate

446 views • 27 slides
Recommendation Overview KNOWLEDGE ACADEMIES REVOCATION APPEALS OCTOBER 28, 2019 Statutory Charge

Recommendation Overview KNOWLEDGE ACADEMIES REVOCATION APPEALS OCTOBER 28, 2019 Statutory Charge

Recommendation Overview KNOWLEDGE ACADEMIES REVOCATION APPEALS OCTOBER 28, 2019 Statutory Charge REVOCATIONS AND REVOCATION APPEALS The Revocation Decision Pursuant to T.C.A. 49-13-122(b), a charter school authorizer may revoke a

386 views • 35 slides
Fintech Certificate Fintech Certificate Fintech Certificate 2 Investment Case The AtonR

Fintech Certificate Fintech Certificate Fintech Certificate 2 Investment Case The AtonR

Fintech Certificate Fintech Certificate Fintech Certificate 2 Investment Case The AtonR Fintech Index is a long-only, USD-based, actively managed total return index. The pace of innovation in financial technology (Fintech) has been

616 views • 26 slides
Secure Path-Key Revocation for Symmetric Key Pre-distribution Schemes in Sensor Networks Tyler

Secure Path-Key Revocation for Symmetric Key Pre-distribution Schemes in Sensor Networks Tyler

Introduction & background Path-key-enabled attacks Secure path-key revocation Conclusions Secure Path-Key Revocation for Symmetric Key Pre-distribution Schemes in Sensor Networks Tyler Moore and Jolyon Clulow University of Cambridge

505 views • 22 slides
NEO PA/VA system EN 54 -16 Certificate No. 2426-CPR-105 PA/VA System EN 54 -16 Certificate No.

NEO PA/VA system EN 54 -16 Certificate No. 2426-CPR-105 PA/VA System EN 54 -16 Certificate No.

NEO PA/VA system EN 54 -16 Certificate No. 2426-CPR-105 PA/VA System EN 54 -16 Certificate No. 2426-CPR-105 NEO is an innovative Public Address and Voice Alarm system that allows an easy audio installation with just one piece of equipment.

326 views • 7 slides
Measurement There are two main systems of measurement: - The English system

Measurement There are two main systems of measurement: - The English system

4 - 1 Introduction Measurement is finding a number that shows the size or amount of something. Measurement is done using measuring tools. Measurement There are two main systems of measurement: - The

438 views • 4 slides
1 4/3/2015 AMEs In Your Area If You Decide to Renew Your Medical So Whats This Light Sport

1 4/3/2015 AMEs In Your Area If You Decide to Renew Your Medical So Whats This Light Sport

4/3/2015 New Plastic Pilot Certificate So, Where Do I Start? What we will cover today Your old paper certificate is no longer valid. What it takes to be PIC again Google Search: Replacement of Airmen Certificate What has

485 views • 35 slides
Certificate of Recognition Certificate of Recognition - Defined COR is a health and safety

Certificate of Recognition Certificate of Recognition - Defined COR is a health and safety

Certificate of Recognition Certificate of Recognition - Defined COR is a health and safety certification program National standard supported by the Canadian Federation of Construction Safety Association (CFCSA) Aimed at driving

320 views • 10 slides
Certificate of Public Advantage Presentation to the House Select Committee on the Certificate of

Certificate of Public Advantage Presentation to the House Select Committee on the Certificate of

Certificate of Public Advantage Presentation to the House Select Committee on the Certificate of Need Process and Related Hospital Issues Research Division Staff, September 14, 2011 What is a COPA? An agreement among two or more hospitals

201 views • 19 slides
Certificate of Recognition Update February 19, 2016 1 Certificate of Recognition- Defined

Certificate of Recognition Update February 19, 2016 1 Certificate of Recognition- Defined

Certificate of Recognition Update February 19, 2016 1 Certificate of Recognition- Defined COR is a workplace health and safety certification program All Legislative elements require 100% achievement National standard supported by

374 views • 9 slides
Action Plan in the Matter of Revocation of Accreditation of the UAA School of Education Jim

Action Plan in the Matter of Revocation of Accreditation of the UAA School of Education Jim

Action Plan in the Matter of Revocation of Accreditation of the UAA School of Education Jim Johnsen President, University of Alaska February 21, 2019 1 Contents The Problem Background Considerations, Options and Next Steps 2

512 views • 33 slides
Certificate o Certi icate of Presentation Presentation This certificate is issued to Hong Guo,

Certificate o Certi icate of Presentation Presentation This certificate is issued to Hong Guo,

The 18 th International Conference on Electronic Business December 2-6, 2018, Guilin, China CERTIFICATE Certificate o Certi icate of Presentation Presentation This certificate is issued to Hong Guo, Anhui University, China Hong Guo, Anhui

1.04k views • 102 slides
Measurement 4 - 1 Introduction Measurement is finding a number

Measurement 4 - 1 Introduction Measurement is finding a number

Measurement 4 - 1 Introduction Measurement is finding a number that shows the size or amount of something. Measurement is done using measuring tools. There are two main systems of measurement: - The

308 views • 8 slides
Bridging social and physical measurement: measurement is not scale construction; measurement is

Bridging social and physical measurement: measurement is not scale construction; measurement is

Bridging social and physical measurement: measurement is not scale construction; measurement is not quantification Luca Mari Universit Cattaneo LIUC, Italy lmari@liuc.it Arctic Workshop on Measurement in Economics 14-15 December

822 views • 38 slides
Certificate Transparency with Privacy Saba Eskandarian, Eran Messeri, Joe Bonneau, Dan Boneh

Certificate Transparency with Privacy Saba Eskandarian, Eran Messeri, Joe Bonneau, Dan Boneh

Certificate Transparency with Privacy Saba Eskandarian, Eran Messeri, Joe Bonneau, Dan Boneh Stanford Google NYU Stanford Certificate Authorities Public Key Certificate CA Certificate apo-CA-lypse apo-CA-lypse Certificate Transparency

722 views • 30 slides

More recommend