Skip to Main content Skip to Navigation
Journal articles

On the Validation of Web X.509 Certificates by TLS interception products

Abstract : The Transport Layer Security (TLS) protocol aims to provide confidentiality and integrity of data. It is based on X.509 Certificates. Our previous research showed that popular Web Browsers exhibit non-standardized behaviour with respect to the certificate validation process [1]. This paper extends that work by examining their handling of OCSP Stapling. We also examine several popular HTTPS interception products, including proxies and anti-virus tools, regarding their certificate validation processes. We analyse and compare their behaviour to that described in the relative standards.
Document type :
Journal articles
Complete list of metadatas

Cited literature [23 references]  Display  Hide  Download

https://hal.archives-ouvertes.fr/hal-02863329
Contributor : Abdelmalek Benzekri <>
Submitted on : Wednesday, June 10, 2020 - 10:20:09 AM
Last modification on : Wednesday, June 17, 2020 - 3:36:38 AM

File

09110796.pdf
Files produced by the author(s)

Identifiers

Citation

Ahmad Samer Wazan, Romain Laborde, David Chadwick, Rémi Venant, Abdelmalek Benzekri, et al.. On the Validation of Web X.509 Certificates by TLS interception products. IEEE Transactions on Dependable and Secure Computing, Institute of Electrical and Electronics Engineers, 2020, pp.1-1. ⟨10.1109/TDSC.2020.3000595⟩. ⟨hal-02863329⟩

Share

Metrics

Record views

35

Files downloads

30