Visible to the public CAre: Certificate Authority Rescue Engine for Proactive Security

TitleCAre: Certificate Authority Rescue Engine for Proactive Security
Publication TypeConference Paper
Year of Publication2017
AuthorsBerkowsky, J., Rana, N., Hayajneh, T.
Conference Name2017 14th International Symposium on Pervasive Systems, Algorithms and Networks 2017 11th International Conference on Frontier of Computer Science and Technology 2017 Third International Symposium of Creative Computing (ISPAN-FCST-ISCC)
ISBN Number 978-1-5386-0840-1
KeywordsBrowsers, CAre, centralized system, certificate authorities, certificate authority, Certificate Authority Rescue Engine, certification, cryptography, Data security, digital signatures, Encryption, Human Behavior, Internet, Metrics, online front-ends, proactive security, pubcrawl, Public key, public key cryptography, public key infrastructure, resilience, Resiliency, Scalability, SSL technology, SSL Trust Models, web security, Web servers, Web site security

Cryptography and encryption is a topic that is blurred by its complexity making it difficult for the majority of the public to easily grasp. The focus of our research is based on SSL technology involving CAs, a centralized system that manages and issues certificates to web servers and computers for validation of identity. We first explain how the certificate provides a secure connection creating a trust between two parties looking to communicate with one another over the internet. Then the paper goes into what happens when trust is compromised and how information that is being transmitted could possibly go into the hands of the wrong person. We are proposing a browser plugin, Certificate Authority Rescue Engine (CAre), to serve as an added source of security with simplicity and visibility. In order to see why CAre will be an added benefit to average and technical users of the internet, one must understand what website security entails. Therefore, this paper will dive deep into website security through the use of public key infrastructure and its core components; certificates, certificate authorities, and their relationship with web browsers.

Citation Keyberkowsky_care:_2017