乐胖代购免代理版

{"id":"https://openalex.org/W1975344666","doi":"https://doi.org/10.1109/sp.2014.14","title":"Triple Handshakes and Cookie Cutters: Breaking and Fixing Authentication over TLS","display_name":"Triple Handshakes and Cookie Cutters: Breaking and Fixing Authentication over TLS","publication_year":2014,"publication_date":"2014-05-01","ids":{"openalex":"https://openalex.org/W1975344666","doi":"https://doi.org/10.1109/sp.2014.14","mag":"1975344666"},"language":"en","primary_location":{"is_oa":true,"landing_page_url":"https://doi.org/10.1109/sp.2014.14","pdf_url":"https://ieeexplore.ieee.org/ielx7/6954656/6956545/06956559.pdf","source":{"id":"https://openalex.org/S4306418833","display_name":"IEEE Symposium on Security and Privacy","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true},"type":"article","type_crossref":"proceedings-article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"bronze","oa_url":"https://ieeexplore.ieee.org/ielx7/6954656/6956545/06956559.pdf","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5026297326","display_name":"Karthikeyan Bhargavan","orcid":"https://orcid.org/0000-0002-3152-8997"},"institutions":[{"id":"https://openalex.org/I1326498283","display_name":"Institut national de recherche en informatique et en automatique","ror":"https://ror.org/02kvxyf05","country_code":"FR","type":"government","lineage":["https://openalex.org/I1326498283"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Karthikeyan Bhargavan","raw_affiliation_strings":["Inria, Paris Rocquencourt"],"affiliations":[{"raw_affiliation_string":"Inria, Paris Rocquencourt","institution_ids":["https://openalex.org/I1326498283"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5010670007","display_name":"Antoine Delignat Lavaud","orcid":null},"institutions":[{"id":"https://openalex.org/I4210132990","display_name":"State Key Laboratory of Cryptology","ror":"https://ror.org/02pn5rj08","country_code":"CN","type":"government","lineage":["https://openalex.org/I4210132990"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Antoine Delignat Lavaud","raw_affiliation_strings":["Programming securely with cryptography"],"affiliations":[{"raw_affiliation_string":"Programming securely with cryptography","institution_ids":["https://openalex.org/I4210132990"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5108519702","display_name":"C\u00e9dric Fournet","orcid":"https://orcid.org/0000-0001-6929-886X"},"institutions":[{"id":"https://openalex.org/I1290206253","display_name":"Microsoft (United States)","ror":"https://ror.org/00d0nc645","country_code":"US","type":"company","lineage":["https://openalex.org/I1290206253"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Cedric Fournet","raw_affiliation_strings":["Microsoft research#TAB#"],"affiliations":[{"raw_affiliation_string":"Microsoft research#TAB#","institution_ids":["https://openalex.org/I1290206253"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5078471429","display_name":"A. Pironti","orcid":"https://orcid.org/0000-0003-4811-6232"},"institutions":[{"id":"https://openalex.org/I1326498283","display_name":"Institut national de recherche en informatique et en automatique","ror":"https://ror.org/02kvxyf05","country_code":"FR","type":"government","lineage":["https://openalex.org/I1326498283"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Alfredo Pironti","raw_affiliation_strings":["Inria, Paris Rocquencourt"],"affiliations":[{"raw_affiliation_string":"Inria, Paris Rocquencourt","institution_ids":["https://openalex.org/I1326498283"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5109084746","display_name":"Pierre Yves Strub","orcid":null},"institutions":[{"id":"https://openalex.org/I4210162154","display_name":"IMDEA Software","ror":"https://ror.org/04xvfkh51","country_code":"ES","type":"facility","lineage":["https://openalex.org/I105140100","https://openalex.org/I4210162154"]}],"countries":["ES"],"is_corresponding":false,"raw_author_name":"Pierre Yves Strub","raw_affiliation_strings":["IMDEA Software Institute#TAB#"],"affiliations":[{"raw_affiliation_string":"IMDEA Software Institute#TAB#","institution_ids":["https://openalex.org/I4210162154"]}]}],"institution_assertions":[],"countries_distinct_count":4,"institutions_distinct_count":4,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":null,"has_fulltext":true,"fulltext_origin":"pdf","cited_by_count":158,"citation_normalized_percentile":{"value":0.999598,"is_in_top_1_percent":true,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":98,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"98","last_page":"113"},"is_retracted":false,"is_paratext":false,"primary_topic":{"id":"https://openalex.org/T11504","display_name":"Advanced Authentication Protocols Security","score":0.9991,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11504","display_name":"Advanced Authentication Protocols Security","score":0.9991,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.9986,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.9974,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/handshake","display_name":"Handshake","score":0.8581538},{"id":"https://openalex.org/keywords/transport-layer-security","display_name":"Transport Layer Security","score":0.5299308},{"id":"https://openalex.org/keywords/secure-channel","display_name":"Secure channel","score":0.48537743}],"concepts":[{"id":"https://openalex.org/C2778000800","wikidata":"https://www.wikidata.org/wiki/Q830043","display_name":"Handshake","level":3,"score":0.8581538},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.80124784},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.7942695},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.7024896},{"id":"https://openalex.org/C148417208","wikidata":"https://www.wikidata.org/wiki/Q4825882","display_name":"Authentication (law)","level":2,"score":0.59630525},{"id":"https://openalex.org/C148176105","wikidata":"https://www.wikidata.org/wiki/Q206494","display_name":"Transport Layer Security","level":3,"score":0.5299308},{"id":"https://openalex.org/C49289754","wikidata":"https://www.wikidata.org/wiki/Q2267081","display_name":"Side channel attack","level":3,"score":0.5283224},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.51631826},{"id":"https://openalex.org/C180073179","wikidata":"https://www.wikidata.org/wiki/Q3304359","display_name":"Secure channel","level":3,"score":0.48537743},{"id":"https://openalex.org/C93996380","wikidata":"https://www.wikidata.org/wiki/Q44127","display_name":"Server","level":2,"score":0.45494628},{"id":"https://openalex.org/C99674996","wikidata":"https://www.wikidata.org/wiki/Q1414155","display_name":"Key exchange","level":4,"score":0.44706514},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.44192278},{"id":"https://openalex.org/C2779182362","wikidata":"https://www.wikidata.org/wiki/Q17126187","display_name":"Session (web analytics)","level":2,"score":0.43903345},{"id":"https://openalex.org/C33884865","wikidata":"https://www.wikidata.org/wiki/Q1254335","display_name":"Cryptographic protocol","level":3,"score":0.42842257},{"id":"https://openalex.org/C110406131","wikidata":"https://www.wikidata.org/wiki/Q41349","display_name":"Smart card","level":2,"score":0.42708844},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.41297328},{"id":"https://openalex.org/C203062551","wikidata":"https://www.wikidata.org/wiki/Q201339","display_name":"Public-key cryptography","level":3,"score":0.26994482},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.20589632},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.09143162},{"id":"https://openalex.org/C151319957","wikidata":"https://www.wikidata.org/wiki/Q752739","display_name":"Asynchronous communication","level":2,"score":0.0}],"mesh":[],"locations_count":6,"locations":[{"is_oa":true,"landing_page_url":"https://doi.org/10.1109/sp.2014.14","pdf_url":"https://ieeexplore.ieee.org/ielx7/6954656/6956545/06956559.pdf","source":{"id":"https://openalex.org/S4306418833","display_name":"IEEE Symposium on Security and Privacy","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true},{"is_oa":true,"landing_page_url":"https://hal.inria.fr/hal-01102259","pdf_url":"https://inria.hal.science/hal-01102259/document","source":{"id":"https://openalex.org/S4306402512","display_name":"HAL (Le Centre pour la Communication Scientifique Directe)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I1294671590","host_organization_name":"Centre National de la Recherche Scientifique","host_organization_lineage":["https://openalex.org/I1294671590"],"host_organization_lineage_names":["Centre National de la Recherche Scientifique"],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false},{"is_oa":true,"landing_page_url":"https://hal.inria.fr/hal-01102259/document","pdf_url":"https://hal.inria.fr/hal-01102259/document","source":{"id":"https://openalex.org/S4306402512","display_name":"HAL (Le Centre pour la Communication Scientifique Directe)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I1294671590","host_organization_name":"Centre National de la Recherche Scientifique","host_organization_lineage":["https://openalex.org/I1294671590"],"host_organization_lineage_names":["Centre National de la Recherche Scientifique"],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false},{"is_oa":true,"landing_page_url":"http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.686.2786","pdf_url":"http://ieee-security.org/TC/SP2014/papers/TripleHandshakesandCookieCutters_c_BreakingandFixingAuthenticationoverTLS.pdf","source":{"id":"https://openalex.org/S4306400349","display_name":"CiteSeer X (The Pennsylvania State University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I130769515","host_organization_name":"Pennsylvania State University","host_organization_lineage":["https://openalex.org/I130769515"],"host_organization_lineage_names":["Pennsylvania State University"],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false},{"is_oa":true,"landing_page_url":"https://hal.inria.fr/hal-01102259/file/triple-handshakes-and-cookie-cutters-oakland14.pdf","pdf_url":"https://hal.inria.fr/hal-01102259/file/triple-handshakes-and-cookie-cutters-oakland14.pdf","source":{"id":"https://openalex.org/S4306402512","display_name":"HAL (Le Centre pour la Communication Scientifique Directe)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I1294671590","host_organization_name":"Centre National de la Recherche Scientifique","host_organization_lineage":["https://openalex.org/I1294671590"],"host_organization_lineage_names":["Centre National de la Recherche Scientifique"],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false},{"is_oa":true,"landing_page_url":"https://inria.hal.science/hal-01102259/file/triple-handshakes-and-cookie-cutters-oakland14.pdf","pdf_url":"https://inria.hal.science/hal-01102259/file/triple-handshakes-and-cookie-cutters-oakland14.pdf","source":{"id":"https://openalex.org/S4306402512","display_name":"HAL (Le Centre pour la Communication Scientifique Directe)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I1294671590","host_organization_name":"Centre National de la Recherche Scientifique","host_organization_lineage":["https://openalex.org/I1294671590"],"host_organization_lineage_names":["Centre National de la Recherche Scientifique"],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false}],"best_oa_location":{"is_oa":true,"landing_page_url":"https://doi.org/10.1109/sp.2014.14","pdf_url":"https://ieeexplore.ieee.org/ielx7/6954656/6956545/06956559.pdf","source":{"id":"https://openalex.org/S4306418833","display_name":"IEEE Symposium on Security and Privacy","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true},"sustainable_development_goals":[{"score":0.59,"display_name":"Peace, justice, and strong institutions","id":"https://metadata.un.org/sdg/16"}],"grants":[],"datasets":[],"versions":[],"referenced_works_count":59,"referenced_works":["https://openalex.org/W109067871","https://openalex.org/W111885978","https://openalex.org/W134409196","https://openalex.org/W1495368944","https://openalex.org/W1502931931","https://openalex.org/W1529024636","https://openalex.org/W1589335325","https://openalex.org/W1656502710","https://openalex.org/W1662746580","https://openalex.org/W1835801358","https://openalex.org/W189766157","https://openalex.org/W1967900147","https://openalex.org/W1982774175","https://openalex.org/W2064815039","https://openalex.org/W2070775894","https://openalex.org/W2072978486","https://openalex.org/W2080317287","https://openalex.org/W2093232845","https://openalex.org/W2094250919","https://openalex.org/W2099537756","https://openalex.org/W2105696445","https://openalex.org/W2107506969","https://openalex.org/W2108617800","https://openalex.org/W2112018008","https://openalex.org/W2132147947","https://openalex.org/W2145994642","https://openalex.org/W2146752727","https://openalex.org/W2150412388","https://openalex.org/W2153041122","https://openalex.org/W2153981248","https://openalex.org/W2163005041","https://openalex.org/W2169908972","https://openalex.org/W2233514401","https://openalex.org/W2236598634","https://openalex.org/W2266218113","https://openalex.org/W2272084235","https://openalex.org/W2291494244","https://openalex.org/W2297460509","https://openalex.org/W2298971592","https://openalex.org/W2300554752","https://openalex.org/W2404356415","https://openalex.org/W2408340937","https://openalex.org/W2460086402","https://openalex.org/W2490580548","https://openalex.org/W2522652639","https://openalex.org/W2725021008","https://openalex.org/W2951117584","https://openalex.org/W2952321600","https://openalex.org/W2999962580","https://openalex.org/W39167138","https://openalex.org/W4210531213","https://openalex.org/W4213190682","https://openalex.org/W4214584724","https://openalex.org/W4242050417","https://openalex.org/W4255216674","https://openalex.org/W4285719527","https://openalex.org/W4293579972","https://openalex.org/W55856520","https://openalex.org/W75729132"],"related_works":["https://openalex.org/W4313064690","https://openalex.org/W4296873577","https://openalex.org/W4295681914","https://openalex.org/W4292152333","https://openalex.org/W3090197073","https://openalex.org/W2612638001","https://openalex.org/W2516734788","https://openalex.org/W2503991861","https://openalex.org/W2347296673","https://openalex.org/W1971902782"],"abstract_inverted_index":{"TLS":[0,43,94,157,188],"was":[1],"designed":[2],"as":[3],"a":[4,49,54,185],"transparent":[5],"channel":[6],"abstraction":[7],"to":[8,15,33,53,71,117,127],"allow":[9],"developers":[10],"with":[11,35],"no":[12],"cryptographic":[13],"expertise":[14],"protect":[16],"their":[17,193],"application":[18,169,198],"against":[19,93],"attackers":[20],"that":[21,81,159,178,192],"may":[22,29],"control":[23],"some":[24,26,61],"clients,":[25],"servers,":[27],"and":[28,75,100,109,115,143,153,190],"have":[30],"the":[31,39,137,148,161,165,168],"capability":[32],"tamper":[34],"network":[36],"connections.":[37],"However,":[38],"security":[40],"guarantees":[41,67,163],"of":[42,46,48,56,107,131,164,184],"fall":[44],"short":[45],"those":[47],"secure":[50],"channel,":[51],"leading":[52],"variety":[55],"attacks.":[57],"We":[58,87,122,135],"show":[59],"how":[60],"widespread":[62],"false":[63],"beliefs":[64],"about":[65],"these":[66,141],"can":[68],"be":[69],"exploited":[70],"attack":[72],"popular":[73],"applications":[74],"defeat":[76],"several":[77,180],"standard":[78],"authentication":[79,162],"methods":[80],"rely":[82],"too":[83],"naively":[84],"on":[85,182],"TLS.":[86,134],"present":[88],"new":[89,125,145,156],"client":[90,176],"impersonation":[91],"attacks":[92,104,142],"renegotiations,":[95],"wireless":[96],"networks,":[97],"challenge-response":[98],"protocols,":[99],"channel-bound":[101],"cookies.":[102],"Our":[103],"exploit":[105,128],"combinations":[106],"RSA":[108],"Diffie-Hellman":[110],"key":[111],"exchange,":[112],"session":[113],"resumption,":[114],"renegotiation":[116],"bypass":[118],"many":[119],"recent":[120],"countermeasures.":[121,146],"also":[123],"demonstrate":[124],"ways":[126],"known":[129],"weaknesses":[130],"HTTP":[132],"over":[133],"investigate":[136],"root":[138],"causes":[139],"for":[140],"propose":[144],"At":[147,167],"protocol":[149],"level,":[150,170],"we":[151,171],"design":[152],"implement":[154],"two":[155],"extensions":[158],"strengthen":[160],"handshake.":[166],"develop":[172],"an":[173],"exemplary":[174],"HTTPS":[175],"library":[177],"implements":[179],"mitigations,":[181],"top":[183],"previously":[186],"verified":[187],"implementation,":[189],"verify":[191],"composition":[194],"provides":[195],"strong,":[196],"simple":[197],"security.":[199]},"cited_by_api_url":"https://api.openalex.org/works?filter=cites:W1975344666","counts_by_year":[{"year":2024,"cited_by_count":7},{"year":2023,"cited_by_count":6},{"year":2022,"cited_by_count":8},{"year":2021,"cited_by_count":13},{"year":2020,"cited_by_count":7},{"year":2019,"cited_by_count":14},{"year":2018,"cited_by_count":15},{"year":2017,"cited_by_count":24},{"year":2016,"cited_by_count":30},{"year":2015,"cited_by_count":22},{"year":2014,"cited_by_count":11}],"updated_date":"2024-12-20T11:07:46.112069","created_date":"2016-06-24"}