| Author | Heinl, Michael P. | dc.contributor.author |
| Author | Giehl, Alexander | dc.contributor.author |
| Author | Wiedermann, Norbert | dc.contributor.author |
| Author | Plaga, Sven | dc.contributor.author |
| Author | Kargl, Frank | dc.contributor.author |
| Date of accession | 2020-01-30T10:53:26Z | dc.date.accessioned |
| Available in OPARU since | 2020-01-30T10:53:26Z | dc.date.available |
| Date of first publication | 2019-11-11 | dc.date.issued |
| Abstract | Public key infrastructures (PKIs) build the foundation for secure communication of a vast majority of cloud services. In the recent past, there has been a series of security incidents leading to increasing concern regarding the trust model currently employed by PKIs. One of the key criticisms is the architecture's implicit assumption that certificate authorities (CAs) are trustworthy a priori.
This work proposes a holistic metric to compensate this assumption by a differentiating assessment of a CA's individual trustworthiness based on objective criteria. The metric utilizes a wide range of technical and non-technical factors derived from existing policies, technical guidelines, and research. It consists of self-contained submetrics allowing the simple extension of the existing set of criteria. The focus is thereby on aspects which can be assessed by employing practically applicable methods of independent data collection.
The metric is meant to help organizations, individuals, and service providers deciding which CAs to trust or distrust. For this, the modularized submetrics are clustered into coherent submetric groups covering a CA's different properties and responsibilities. By applying individually chosen weightings to these submetric groups, the metric's outcomes can be adapted to tailored protection requirements according to an exemplifying attacker model. | dc.description.abstract |
| Language | en | dc.language.iso |
| Publisher | Universität Ulm | dc.publisher |
| License | Standard (ohne Print-on-Demand) | dc.rights |
| Link to license text | https://oparu.uni-ulm.de/xmlui/license_opod_v1 | dc.rights.uri |
| Dewey Decimal Group | DDC 000 / Computer science, information & general works | dc.subject.ddc |
| Dewey Decimal Group | DDC 004 / Data processing & computer science | dc.subject.ddc |
| LCSH | Metric system | dc.subject.lcsh |
| LCSH | Certification | dc.subject.lcsh |
| LCSH | Computer security | dc.subject.lcsh |
| LCSH | Reliability | dc.subject.lcsh |
| LCSH | Espionage | dc.subject.lcsh |
| LCSH | Business intelligence | dc.subject.lcsh |
| LCSH | Monitoring | dc.subject.lcsh |
| Title | MERCAT: A metric for the evaluation and reconsideration of certificate authority trustworthiness | dc.title |
| Resource type | Beitrag zu einer Konferenz | dc.type |
| Version | acceptedVersion | dc.description.version |
| DOI | http://dx.doi.org/10.18725/OPARU-24760 | dc.identifier.doi |
| URN | http://nbn-resolving.de/urn:nbn:de:bsz:289-oparu-24823-5 | dc.identifier.urn |
| GND | Metrik | dc.subject.gnd |
| GND | Zertifizierungsstelle | dc.subject.gnd |
| GND | Digitales Zertifikat | dc.subject.gnd |
| GND | Computersicherheit | dc.subject.gnd |
| GND | Vertrauenswürdigkeit | dc.subject.gnd |
| GND | Spionage | dc.subject.gnd |
| GND | Wirtschaftsspionage | dc.subject.gnd |
| GND | Überwachung | dc.subject.gnd |
| Faculty | Fakultät für Ingenieurwissenschaften, Informatik und Psychologie | uulm.affiliationGeneral |
| Institution | Institut für Verteilte Systeme | uulm.affiliationSpecific |
| Peer review | ja | uulm.peerReview |
| DCMI Type | Text | uulm.typeDCMI |
| Category | Publikationen | uulm.category |
| In cooperation with | Fraunhofer Institut für Angewandte und Integrierte Sicherheit AISEC | uulm.cooperation |
| Is Supplement To | http://dx.doi.org/10.18725/OPARU-12173 | uulm.relation.isSupplementTo |
| DOI of original publication | 10.1145/3338466.3358917 | dc.relation1.doi |
| Source - Title of source | CCSW'19: Proceedings of the 2019 ACM SIGSAC Conference on Cloud Computing Security Workshop | source.title |
| Quellenangabe - Herausgeber | Association for Computing Machinery (ACM) | source.contributor.editor1 |
| Source - Publisher | New York, NY, USA | source.publisherPlace |
| Source - Place of publication | Association for Computing Machinery (ACM) | source.publisher |
| Source - Volume | 2019 | source.volume |
| Source - Year | 2019 | source.year |
| Source - ISBN | 978-1-4503-6826-1 | source.identifier.isbn |
| Conference name | 10th ACM Cloud Computing Security Workshop (CCSW'19) | uulm.conferenceName |
| Conference place | London, United Kingdom | uulm.conferencePlace |
| Conference start date | 2019-11-11 | uulm.conferenceStartDate |
| Conference end date | 2019-11-11 | uulm.conferenceEndDate |
| Open Access | Green Published | uulm.OA |
| WoS | 000557325500001 | uulm.identifier.wos |
| University Bibliography | ja | uulm.unibibliographie |
