Laribus: Privacy-Preserving Detection of Fake SSL Certificates with a Social P2P Notary Network

Andrea Micheloni, Karl-Peter Fuchs, Dominik Herrmann, Hannes Federrath
2013 2013 International Conference on Availability, Reliability and Security  
In this paper we present Laribus, a peer-to-peer network designed to detect local man-in-the-middle attacks against secure socket layer/transport layer security (SSL/TLS). With Laribus, clients can validate the authenticity of a certificate presented to them by retrieving it from different vantage points on the network. Unlike previous solutions, clients do not have to trust a central notary service nor do they have to rely on the cooperation of website owners. The Laribus network is based on a
more » ... social network graph, which allows users to form notary groups that improve both privacy and availability. It integrates several well-known techniques, such as secret sharing, ring signatures, layered encryption, range queries, and a distributed hash table (DHT), to achieve privacy-aware queries, scalability, and decentralization. We present the design and core components of Laribus, discuss its security properties, and also provide results from a simulation-based feasibility study.
doi:10.1109/ares.2013.7 dblp:conf/IEEEares/MicheloniFHF13 fatcat:hbisvujajbbt3gghkgty6c4msa