论文信息 - A Socio-technical Understanding of TLS Certificate Validation

A Socio-technical Understanding of TLS Certificate Validation

To authenticate a web server, modern browsers check whether a TLS certificate is valid. This check is socio-technical because, when the technical validation fails, it may request the user to decide, intertwining the usual technical issues with social elements, such as trust and cultural values. Hence the need for a methodology aimed at a socio-technical understanding of TLS certificate validation. This aim is demanding not only due to user participation but also because browsers behave differently. An innovative methodology is outlined and demonstrated on the four market-leader browsers, Chrome, Internet Explorer, Firefox and Opera Mini. It involves modelling in UML the multi-layered interactions among servers, browsers, and users and then translating them into a formal language amenable to model checking socio-technical security properties.

[1] Carl M. Ellison,et al. Ceremony Design and Analysis , 2007, IACR Cryptol. ePrint Arch..

[2] Lizzie Coles-Kemp,et al. Layered Analysis of Security Ceremonies , 2012, SEC.

[3] C. A. R. Hoare,et al. Communicating sequential processes , 1978, CACM.

[4] Eric Rescorla,et al. The Transport Layer Security (TLS) Protocol Version 1.2 , 2008, RFC.

[5] Eric Rescorla,et al. The Transport Layer Security (TLS) Protocol Version 1.1 , 2006, RFC.

[6] Eric Rescorla,et al. HTTP Over TLS , 2000, RFC.

[7] Robert Biddle,et al. Browser interfaces and extended validation SSL certificates: an empirical study , 2009, CCSW '09.

[8] Lorrie Faith Cranor,et al. Crying Wolf: An Empirical Study of SSL Warning Effectiveness , 2009, USENIX Security Symposium.

[9] Jun Sun,et al. PAT: Towards Flexible Verification under Fairness , 2009, CAV.