Certificate Transparency (CT) is an emerging system for enabling the rapid discovery of malicious or misissued certificates. Initially standardized in 2013, CT is now finally beginning to see widespread support. Although CT provides desirable security benefits, web browsers cannot begin requiring all websites to support CT at once, due to the risk of breaking large numbers of websites. We discuss challenges for deployment, analyze the adoption of CT on the web, and measure the error rates experienced by users of the Google Chrome web browser. We find that CT has so far been widely adopted with minimal breakage and warnings.Security researchers often struggle with the tradeoff between security and user frustration: rolling out new security requirements often causes breakage. We view CT as a case study for deploying ecosystem-wide change while trying to minimize end user impact. We discuss the design properties of CT that made its success possible, as well as draw lessons from its risks and pitfalls that could be avoided in future large-scale security deployments.
The Web public key infrastructure is essential to providing secure communication on the Internet today, and certificate authorities play a crucial role in this ecosystem by issuing certificates. These authorities may misissue certificates or suffer misuse attacks, however, which has given rise to the Certificate Transparency (CT) project. The goal of CT is to store all issued certificates in public logs, which can then be checked for the presence of potentially misissued certificates. Thus, the requirement that a given certificate is indeed in one (or several) of these logs lies at the core of CT. In its current deployment, however, most individual clients do not check that the certificates they see are in logs, as requesting a proof of inclusion directly reveals the certificate and thus creates the clear potential for a violation of that client’s privacy. In this paper, we explore the techniques that have been proposed for privacy-preserving auditing of certificate inclusion, focusing on their effectiveness, efficiency, and suitability in a near-term deployment. In doing so, we also explore the parallels with related problems involving browser clients. Guided by a set of constraints that we develop, we ultimately observe several key limitations in many proposals, ranging from their privacy provisions to the fact that they focus on the interaction between a client and a log but leave open the question of how a client could privately report any certificates that are missing.
Certificate Transparency is a maturing system to provide visibility into the certificates that are issued as part of the web's public key infrastructure. In this article, we survey the history of Certificate Transparency deployment so far and discuss ongoing engineering and research challenges.
INTRODUCTION: The rate of COVID-19 infection varies across different regions in the United States. However, there are limited data evaluating the vaccination rates and subsequent infection among the pregnant population with regard to geographical location. The primary aim of the study was to determine the COVID-19 vaccination rate and subsequent infection rate among pregnant people in each U.S. census region. METHODS: A retrospective data collection of pregnant people from January 2020 to March 2022 was performed using the Cerner Real-World Data from 106 centers. The four census regions were defined by the U.S. Census Bureau. Breakthrough infection was defined as a positive COVID-19 test during or after pregnancy among immunized mothers. Because the database was fully de-identified, IRB approval was not required. RESULTS: The study included 389,764 pregnant persons, of which 44,846 were vaccinated. The rate of vaccination against COVID-19 was 14.57%, 11.80%, 11.71%, and 5.24% in the South, West, Northeast, and Midwest census regions, respectively. The COVID-19 infection rate after vaccination was 1.70%, 1.31%, 0.36%, and 0.06% in the Northeast, South, Midwest, and West census regions, respectively. CONCLUSION: The reported 11% vaccination rate suggests low utilization among pregnant people; that said, breakthrough infections rates appeared extremely low, suggesting robust protection. The study is limited in that it queried hospital-based vaccinations and breakthrough infections and is unable to capture larger community-based data. Further studies may compare vaccination and infection trends with nonpregnant patient populations.
scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.
hi@scite.ai
10624 S. Eastern Ave., Ste. A-614
Henderson, NV 89052, USA
Copyright © 2024 scite LLC. All rights reserved.
Made with 💙 for researchers
Part of the Research Solutions Family.