Logo des Repositoriums
 

Why showing one TLS certificate is not enough? – Towards a browser feedback for multiple TLS certificate verifications

dc.contributor.authorPöhls, Henrich C.
dc.contributor.editorFreiling, Felix C.
dc.date.accessioned2019-01-17T13:26:53Z
dc.date.available2019-01-17T13:26:53Z
dc.date.issued2010
dc.description.abstractContent reuse on the Web 2.0 is a common "phenomenon". However, it has now reached critical and sensitive areas, as for example online shopping's submission forms for credit card data. Browsers lack the ability to show anything else than the outer most's TLS certificate verification to the user. We show that there is a trend to embed security critical content from other site's into a website. We will use VISA's credit card submission form embedded in an <iframe> as example. We give detailed examples of existing tentatives to solve the problem. After analyzing them, we argue that a solution can only be at the web browser's core. Finally, we postulate five steps to be taken into consideration for to evaluate and structure future solutions.en
dc.identifier.isbn978-3-88579-264-2
dc.identifier.pissn1617-5468
dc.identifier.urihttps://dl.gi.de/handle/20.500.12116/19788
dc.language.isoen
dc.publisherGesellschaft für Informatik e.V.
dc.relation.ispartofSicherheit 2010. Sicherheit, Schutz und Zuverlässigkeit
dc.relation.ispartofseriesLecture Notes in Informatics (LNI) - Proceedings, Volume P-170
dc.titleWhy showing one TLS certificate is not enough? – Towards a browser feedback for multiple TLS certificate verificationsen
dc.typeText/Conference Paper
gi.citation.endPage276
gi.citation.publisherPlaceBonn
gi.citation.startPage265
gi.conference.date5.-7. Oktober 2010
gi.conference.locationBerlin
gi.conference.sessiontitleRegular Research Papers

Dateien

Originalbündel
1 - 1 von 1
Lade...
Vorschaubild
Name:
265.pdf
Größe:
145.28 KB
Format:
Adobe Portable Document Format