{"id":"https://openalex.org/W2511395838","doi":"https://doi.org/10.1109/tdsc.2016.2601610","title":"Design, Analysis, and Implementation of ARPKI: An Attack-Resilient Public-Key Infrastructure","display_name":"Design, Analysis, and Implementation of ARPKI: An Attack-Resilient Public-Key Infrastructure","publication_year":2016,"publication_date":"2016-08-19","ids":{"openalex":"https://openalex.org/W2511395838","doi":"https://doi.org/10.1109/tdsc.2016.2601610","mag":"2511395838"},"language":"en","primary_location":{"id":"doi:10.1109/tdsc.2016.2601610","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tdsc.2016.2601610","pdf_url":null,"source":{"id":"https://openalex.org/S133795288","display_name":"IEEE Transactions on Dependable and Secure Computing","issn_l":"1545-5971","issn":["1545-5971","1941-0018","2160-9209"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320439","host_organization_name":"IEEE Computer Society","host_organization_lineage":["https://openalex.org/P4310320439","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Computer Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Dependable and Secure Computing","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5025344654","display_name":"David Basin","orcid":"https://orcid.org/0000-0003-2952-939X"},"institutions":[{"id":"https://openalex.org/I35440088","display_name":"ETH Zurich","ror":"https://ror.org/05a28rw58","country_code":"CH","type":"education","lineage":["https://openalex.org/I2799323385","https://openalex.org/I35440088"]}],"countries":["CH"],"is_corresponding":true,"raw_author_name":"David Basin","raw_affiliation_strings":["Department of Computer Science, ETH Zurich, Zurich, Switzerland"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Computer Science, ETH Zurich, Zurich, Switzerland","institution_ids":["https://openalex.org/I35440088"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5054383139","display_name":"Cas Cremers","orcid":"https://orcid.org/0000-0003-0322-2293"},"institutions":[{"id":"https://openalex.org/I40120149","display_name":"University of Oxford","ror":"https://ror.org/052gg0110","country_code":"GB","type":"education","lineage":["https://openalex.org/I40120149"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Cas Cremers","raw_affiliation_strings":["Department of Computer Science, University of Oxford, Oxford, United Kingdom"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Computer Science, University of Oxford, Oxford, United Kingdom","institution_ids":["https://openalex.org/I40120149"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5062754827","display_name":"Tiffany Hyun\u2010Jin Kim","orcid":null},"institutions":[{"id":"https://openalex.org/I200576644","display_name":"HRL Laboratories (United States)","ror":"https://ror.org/05p7te762","country_code":"US","type":"company","lineage":["https://openalex.org/I200576644"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Tiffany Hyun-Jin Kim","raw_affiliation_strings":["HRL Laboratories LLC, Malibu, CA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"HRL Laboratories LLC, Malibu, CA","institution_ids":["https://openalex.org/I200576644"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5056518136","display_name":"Adrian Perrig","orcid":"https://orcid.org/0000-0002-5280-5412"},"institutions":[{"id":"https://openalex.org/I35440088","display_name":"ETH Zurich","ror":"https://ror.org/05a28rw58","country_code":"CH","type":"education","lineage":["https://openalex.org/I2799323385","https://openalex.org/I35440088"]}],"countries":["CH"],"is_corresponding":false,"raw_author_name":"Adrian Perrig","raw_affiliation_strings":["Department of Computer Science, ETH Zurich, Zurich, Switzerland"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Computer Science, ETH Zurich, Zurich, Switzerland","institution_ids":["https://openalex.org/I35440088"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5089250692","display_name":"Ralf Sasse","orcid":"https://orcid.org/0000-0002-5632-6099"},"institutions":[{"id":"https://openalex.org/I35440088","display_name":"ETH Zurich","ror":"https://ror.org/05a28rw58","country_code":"CH","type":"education","lineage":["https://openalex.org/I2799323385","https://openalex.org/I35440088"]}],"countries":["CH"],"is_corresponding":false,"raw_author_name":"Ralf Sasse","raw_affiliation_strings":["Department of Computer Science, ETH Zurich, Zurich, Switzerland"],"raw_orcid":"https://orcid.org/0000-0002-5632-6099","affiliations":[{"raw_affiliation_string":"Department of Computer Science, ETH Zurich, Zurich, Switzerland","institution_ids":["https://openalex.org/I35440088"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5054220744","display_name":"Pawe\u0142 Sza\u0142achowski","orcid":"https://orcid.org/0000-0003-0871-3729"},"institutions":[{"id":"https://openalex.org/I35440088","display_name":"ETH Zurich","ror":"https://ror.org/05a28rw58","country_code":"CH","type":"education","lineage":["https://openalex.org/I2799323385","https://openalex.org/I35440088"]}],"countries":["CH"],"is_corresponding":false,"raw_author_name":"Pawel Szalachowski","raw_affiliation_strings":["Department of Computer Science, ETH Zurich, Zurich, Switzerland"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Computer Science, ETH Zurich, Zurich, Switzerland","institution_ids":["https://openalex.org/I35440088"]}]}],"institutions":[],"countries_distinct_count":3,"institutions_distinct_count":6,"corresponding_author_ids":["https://openalex.org/A5025344654"],"corresponding_institution_ids":["https://openalex.org/I35440088"],"apc_list":null,"apc_paid":null,"fwci":5.7424,"has_fulltext":false,"cited_by_count":50,"citation_normalized_percentile":{"value":0.96215401,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":91,"max":99},"biblio":{"volume":"15","issue":"3","first_page":"393","last_page":"408"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9987000226974487,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T11504","display_name":"Advanced Authentication Protocols Security","score":0.9979000091552734,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/public-key-infrastructure","display_name":"Public key infrastructure","score":0.8708993196487427},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.8182860016822815},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7879719734191895},{"id":"https://openalex.org/keywords/certificate-authority","display_name":"Certificate authority","score":0.7851694822311401},{"id":"https://openalex.org/keywords/public-key-cryptography","display_name":"Public-key cryptography","score":0.6838313937187195},{"id":"https://openalex.org/keywords/key","display_name":"Key (lock)","score":0.5712920427322388},{"id":"https://openalex.org/keywords/revocation","display_name":"Revocation","score":0.5586618185043335},{"id":"https://openalex.org/keywords/certification","display_name":"Certification","score":0.5551702976226807},{"id":"https://openalex.org/keywords/certificate","display_name":"Certificate","score":0.5451890230178833},{"id":"https://openalex.org/keywords/implicit-certificate","display_name":"Implicit certificate","score":0.5357649922370911},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.4978189468383789},{"id":"https://openalex.org/keywords/revocation-list","display_name":"Revocation list","score":0.4804746210575104},{"id":"https://openalex.org/keywords/compromise","display_name":"Compromise","score":0.41864052414894104},{"id":"https://openalex.org/keywords/encryption","display_name":"Encryption","score":0.24706536531448364},{"id":"https://openalex.org/keywords/law","display_name":"Law","score":0.13647478818893433},{"id":"https://openalex.org/keywords/overhead","display_name":"Overhead (engineering)","score":0.08362948894500732},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.07931852340698242}],"concepts":[{"id":"https://openalex.org/C72648740","wikidata":"https://www.wikidata.org/wiki/Q658476","display_name":"Public key infrastructure","level":4,"score":0.8708993196487427},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.8182860016822815},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7879719734191895},{"id":"https://openalex.org/C93636275","wikidata":"https://www.wikidata.org/wiki/Q196776","display_name":"Certificate authority","level":4,"score":0.7851694822311401},{"id":"https://openalex.org/C203062551","wikidata":"https://www.wikidata.org/wiki/Q201339","display_name":"Public-key cryptography","level":3,"score":0.6838313937187195},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.5712920427322388},{"id":"https://openalex.org/C2775892892","wikidata":"https://www.wikidata.org/wiki/Q6509517","display_name":"Revocation","level":3,"score":0.5586618185043335},{"id":"https://openalex.org/C46304622","wikidata":"https://www.wikidata.org/wiki/Q374814","display_name":"Certification","level":2,"score":0.5551702976226807},{"id":"https://openalex.org/C96865113","wikidata":"https://www.wikidata.org/wiki/Q2946816","display_name":"Certificate","level":2,"score":0.5451890230178833},{"id":"https://openalex.org/C67405866","wikidata":"https://www.wikidata.org/wiki/Q6007261","display_name":"Implicit certificate","level":5,"score":0.5357649922370911},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.4978189468383789},{"id":"https://openalex.org/C147296133","wikidata":"https://www.wikidata.org/wiki/Q196765","display_name":"Revocation list","level":5,"score":0.4804746210575104},{"id":"https://openalex.org/C46355384","wikidata":"https://www.wikidata.org/wiki/Q726686","display_name":"Compromise","level":2,"score":0.41864052414894104},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.24706536531448364},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.13647478818893433},{"id":"https://openalex.org/C2779960059","wikidata":"https://www.wikidata.org/wiki/Q7113681","display_name":"Overhead (engineering)","level":2,"score":0.08362948894500732},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.07931852340698242},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.0},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/tdsc.2016.2601610","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tdsc.2016.2601610","pdf_url":null,"source":{"id":"https://openalex.org/S133795288","display_name":"IEEE Transactions on Dependable and Secure Computing","issn_l":"1545-5971","issn":["1545-5971","1941-0018","2160-9209"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320439","host_organization_name":"IEEE Computer Society","host_organization_lineage":["https://openalex.org/P4310320439","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Computer Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Dependable and Secure Computing","raw_type":"journal-article"},{"id":"pmh:oai:ora.ox.ac.uk:uuid:e270217d-9b86-45d7-b0a5-ed38e927ce98","is_oa":false,"landing_page_url":"https://ora.ox.ac.uk/objects/uuid:e270217d-9b86-45d7-b0a5-ed38e927ce98","pdf_url":null,"source":{"id":"https://openalex.org/S4306402636","display_name":"Oxford University Research Archive (ORA) (University of Oxford)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I40120149","host_organization_name":"University of Oxford","host_organization_lineage":["https://openalex.org/I40120149"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"Journal article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Industry, innovation and infrastructure","score":0.6299999952316284,"id":"https://metadata.un.org/sdg/9"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":31,"referenced_works":["https://openalex.org/W146244851","https://openalex.org/W1416455035","https://openalex.org/W1785673704","https://openalex.org/W1903195954","https://openalex.org/W2002789557","https://openalex.org/W2022302485","https://openalex.org/W2037107113","https://openalex.org/W2078872626","https://openalex.org/W2095738444","https://openalex.org/W2099175354","https://openalex.org/W2116876232","https://openalex.org/W2145994642","https://openalex.org/W2159801413","https://openalex.org/W2161954933","https://openalex.org/W2186028149","https://openalex.org/W2294157280","https://openalex.org/W2557281918","https://openalex.org/W2950691899","https://openalex.org/W3100279392","https://openalex.org/W3138574159","https://openalex.org/W4229838822","https://openalex.org/W4233819588","https://openalex.org/W4293771386","https://openalex.org/W4298051233","https://openalex.org/W6605925781","https://openalex.org/W6628151760","https://openalex.org/W6638052431","https://openalex.org/W6640444186","https://openalex.org/W6683814343","https://openalex.org/W6730212269","https://openalex.org/W6763987134"],"related_works":["https://openalex.org/W3118037924","https://openalex.org/W4287547098","https://openalex.org/W1612032142","https://openalex.org/W1532067216","https://openalex.org/W2188945435","https://openalex.org/W2170764533","https://openalex.org/W151108224","https://openalex.org/W2158692094","https://openalex.org/W1490824585","https://openalex.org/W1709311896"],"abstract_inverted_index":{"The":[0,24],"current":[1],"Transport":[2],"Layer":[3],"Security":[4],"(TLS)":[5],"Public-Key":[6],"Infrastructure":[7],"(PKI)":[8],"is":[9,72,160,166,203],"based":[10],"on":[11,18],"a":[12,20,40,46,121,169,207,224],"weakest-link":[13],"security":[14,177,190],"model":[15],"that":[16,62,83,124,126,165,185,227,238],"depends":[17],"over":[19],"thousand":[21],"trust":[22],"roots.":[23],"recent":[25],"history":[26],"of":[27,55,90,92],"malicious":[28],"and":[29,58,97,135,139,146,172,200],"compromised":[30],"Certification":[31,106],"Authorities":[32],"has":[33],"fueled":[34],"the":[35,52,59,81,88,161,180,230,242],"desire":[36],"for":[37,233],"alternatives.":[38],"Creating":[39],"new,":[41],"secure":[42],"infrastructure":[43],"is,":[44],"however,":[45],"surprisingly":[47],"challenging":[48],"task":[49],"due":[50,86],"to":[51,69,87,205,254],"large":[53],"number":[54],"parties":[56,96],"involved":[57],"many":[60],"ways":[61],"they":[63],"can":[64,84],"interact.":[65],"A":[66],"principled":[67],"approach":[68],"its":[70,175],"design":[71],"therefore":[73],"mandatory,":[74],"as":[75,100,130,152,215],"humans":[76],"cannot":[77],"feasibly":[78],"consider":[79],"all":[80,216,229],"cases":[82],"occur":[85],"multitude":[89],"interleavings":[91],"actions":[93],"by":[94],"legitimate":[95],"attackers,":[98],"such":[99,129,151],"private":[101],"key":[102,113,115,154],"compromises":[103],"(e.g.,":[104],"domain,":[105],"Authority,":[107],"log":[108],"server,":[109],"other":[110],"trusted":[111,198],"entities),":[112],"revocations,":[114],"updates,":[116],"etc.":[117],"We":[118,183],"present":[119,223],"ARPKI,":[120],"PKI":[122,163],"architecture":[123,164],"ensures":[125],"certificate-related":[127],"operations,":[128,145],"certificate":[131],"issuance,":[132],"update,":[133],"revocation,":[134],"validation,":[136],"are":[137,218,261],"transparent":[138],"accountable.":[140],"ARPKI":[141,159,186,239],"efficiently":[142,240],"supports":[143],"these":[144],"gracefully":[147],"handles":[148,241],"catastrophic":[149],"events":[150],"domain":[153],"loss":[155],"or":[156],"compromise.":[157],"Moreover":[158],"first":[162],"co-designed":[167],"with":[168,245],"formal":[170],"model,":[171],"we":[173,222],"verify":[174],"core":[176],"property":[178],"using":[179],"TAMARIN":[181],"prover.":[182],"prove":[184],"offers":[187],"extremely":[188],"strong":[189],"guarantees,":[191],"where":[192],"compromising":[193],"even":[194],"n":[195],"-":[196],"1":[197],"signing":[199],"verifying":[201],"entities":[202],"insufficient":[204],"launch":[206],"man-in-the-middle":[208],"attack.":[209],"Moreover,":[210],"ARPKI's":[211],"use":[212],"deters":[213],"misbehavior":[214],"operations":[217],"publicly":[219],"visible.":[220],"Finally,":[221],"proof-of-concept":[225],"implementation":[226],"provides":[228],"features":[231],"required":[232],"deployment.":[234],"Our":[235],"experiments":[236],"indicate":[237],"certification":[243],"process":[244],"low":[246],"overhead.":[247],"It":[248],"does":[249],"not":[250],"incur":[251],"additional":[252,258],"latency":[253],"TLS,":[255],"since":[256],"no":[257],"round":[259],"trips":[260],"required.":[262]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":3},{"year":2023,"cited_by_count":3},{"year":2022,"cited_by_count":12},{"year":2021,"cited_by_count":8},{"year":2020,"cited_by_count":10},{"year":2019,"cited_by_count":4},{"year":2018,"cited_by_count":7},{"year":2017,"cited_by_count":2}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}