{"id":"https://openalex.org/W3097101678","doi":"https://doi.org/10.1145/3372297.3417252","title":"Talking with Familiar Strangers: An Empirical Study on HTTPS Context Confusion Attacks","display_name":"Talking with Familiar Strangers: An Empirical Study on HTTPS Context Confusion Attacks","publication_year":2020,"publication_date":"2020-10-30","ids":{"openalex":"https://openalex.org/W3097101678","doi":"https://doi.org/10.1145/3372297.3417252","mag":"3097101678"},"language":"en","primary_location":{"id":"doi:10.1145/3372297.3417252","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3372297.3417252","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2020 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5100381694","display_name":"Mingming Zhang","orcid":"https://orcid.org/0000-0001-9981-7923"},"institutions":[{"id":"https://openalex.org/I99065089","display_name":"Tsinghua University","ror":"https://ror.org/03cve4549","country_code":"CN","type":"education","lineage":["https://openalex.org/I99065089"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Mingming Zhang","raw_affiliation_strings":["Tsinghua University, Beijing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Tsinghua University, Beijing, China","institution_ids":["https://openalex.org/I99065089"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5102821288","display_name":"Xiaofeng Zheng","orcid":"https://orcid.org/0000-0002-7130-6029"},"institutions":[{"id":"https://openalex.org/I99065089","display_name":"Tsinghua University","ror":"https://ror.org/03cve4549","country_code":"CN","type":"education","lineage":["https://openalex.org/I99065089"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Xiaofeng Zheng","raw_affiliation_strings":["Tsinghua University &amp; QI-ANXIN Group, Beijing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Tsinghua University &amp; QI-ANXIN Group, Beijing, China","institution_ids":["https://openalex.org/I99065089"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5067291134","display_name":"Kaiwen Shen","orcid":"https://orcid.org/0009-0009-1221-1773"},"institutions":[{"id":"https://openalex.org/I99065089","display_name":"Tsinghua University","ror":"https://ror.org/03cve4549","country_code":"CN","type":"education","lineage":["https://openalex.org/I99065089"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Kaiwen Shen","raw_affiliation_strings":["Tsinghua University, Beijing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Tsinghua University, Beijing, China","institution_ids":["https://openalex.org/I99065089"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5005112254","display_name":"Ziqiao Kong","orcid":"https://orcid.org/0009-0009-4926-4932"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Ziqiao Kong","raw_affiliation_strings":["QI-ANXIN Group, Beijing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"QI-ANXIN Group, Beijing, China","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5040912987","display_name":"Chaoyi Lu","orcid":"https://orcid.org/0009-0005-3512-7612"},"institutions":[{"id":"https://openalex.org/I99065089","display_name":"Tsinghua University","ror":"https://ror.org/03cve4549","country_code":"CN","type":"education","lineage":["https://openalex.org/I99065089"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Chaoyi Lu","raw_affiliation_strings":["Tsinghua University, Beijing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Tsinghua University, Beijing, China","institution_ids":["https://openalex.org/I99065089"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100701610","display_name":"Yu Wang","orcid":"https://orcid.org/0000-0002-7216-6929"},"institutions":[{"id":"https://openalex.org/I99065089","display_name":"Tsinghua University","ror":"https://ror.org/03cve4549","country_code":"CN","type":"education","lineage":["https://openalex.org/I99065089"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Yu Wang","raw_affiliation_strings":["Tsinghua University, Beijing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Tsinghua University, Beijing, China","institution_ids":["https://openalex.org/I99065089"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5067799841","display_name":"Haixin Duan","orcid":"https://orcid.org/0000-0003-0083-733X"},"institutions":[{"id":"https://openalex.org/I99065089","display_name":"Tsinghua University","ror":"https://ror.org/03cve4549","country_code":"CN","type":"education","lineage":["https://openalex.org/I99065089"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Haixin Duan","raw_affiliation_strings":["Tsinghua University &amp; QI-ANXIN Group, Beijing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Tsinghua University &amp; QI-ANXIN Group, Beijing, China","institution_ids":["https://openalex.org/I99065089"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5027549447","display_name":"Shuang Hao","orcid":"https://orcid.org/0000-0003-2756-6015"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Shuang Hao","raw_affiliation_strings":["University of Texas at Dallas, Dallas, TX, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"University of Texas at Dallas, Dallas, TX, USA","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5101694986","display_name":"Baojun Liu","orcid":"https://orcid.org/0000-0002-9032-8063"},"institutions":[{"id":"https://openalex.org/I99065089","display_name":"Tsinghua University","ror":"https://ror.org/03cve4549","country_code":"CN","type":"education","lineage":["https://openalex.org/I99065089"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Baojun Liu","raw_affiliation_strings":["Tsinghua University, Beijing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Tsinghua University, Beijing, China","institution_ids":["https://openalex.org/I99065089"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5052437722","display_name":"Min Yang","orcid":"https://orcid.org/0000-0001-9714-5545"},"institutions":[{"id":"https://openalex.org/I24943067","display_name":"Fudan University","ror":"https://ror.org/013q1eq08","country_code":"CN","type":"education","lineage":["https://openalex.org/I24943067"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Min Yang","raw_affiliation_strings":["Fudan University, Shanghai, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Fudan University, Shanghai, China","institution_ids":["https://openalex.org/I24943067"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":10,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":3.3418,"has_fulltext":false,"cited_by_count":15,"citation_normalized_percentile":{"value":0.93723178,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":91,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"1939","last_page":"1952"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.9987999796867371,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.9987999796867371,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9986000061035156,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9983999729156494,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/confusion","display_name":"Confusion","score":0.7409150004386902},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.7171136140823364},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7157915830612183},{"id":"https://openalex.org/keywords/confidentiality","display_name":"Confidentiality","score":0.6079850792884827},{"id":"https://openalex.org/keywords/internet-privacy","display_name":"Internet privacy","score":0.5785609483718872},{"id":"https://openalex.org/keywords/context","display_name":"Context (archaeology)","score":0.5773545503616333},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.485173761844635},{"id":"https://openalex.org/keywords/psychology","display_name":"Psychology","score":0.12258493900299072},{"id":"https://openalex.org/keywords/history","display_name":"History","score":0.060314059257507324}],"concepts":[{"id":"https://openalex.org/C2781140086","wikidata":"https://www.wikidata.org/wiki/Q557945","display_name":"Confusion","level":2,"score":0.7409150004386902},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.7171136140823364},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7157915830612183},{"id":"https://openalex.org/C71745522","wikidata":"https://www.wikidata.org/wiki/Q2476929","display_name":"Confidentiality","level":2,"score":0.6079850792884827},{"id":"https://openalex.org/C108827166","wikidata":"https://www.wikidata.org/wiki/Q175975","display_name":"Internet privacy","level":1,"score":0.5785609483718872},{"id":"https://openalex.org/C2779343474","wikidata":"https://www.wikidata.org/wiki/Q3109175","display_name":"Context (archaeology)","level":2,"score":0.5773545503616333},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.485173761844635},{"id":"https://openalex.org/C15744967","wikidata":"https://www.wikidata.org/wiki/Q9418","display_name":"Psychology","level":0,"score":0.12258493900299072},{"id":"https://openalex.org/C95457728","wikidata":"https://www.wikidata.org/wiki/Q309","display_name":"History","level":0,"score":0.060314059257507324},{"id":"https://openalex.org/C11171543","wikidata":"https://www.wikidata.org/wiki/Q41630","display_name":"Psychoanalysis","level":1,"score":0.0},{"id":"https://openalex.org/C166957645","wikidata":"https://www.wikidata.org/wiki/Q23498","display_name":"Archaeology","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3372297.3417252","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3372297.3417252","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2020 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.550000011920929,"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":29,"referenced_works":["https://openalex.org/W1920390248","https://openalex.org/W2008251338","https://openalex.org/W2077092541","https://openalex.org/W2116876232","https://openalex.org/W2130867912","https://openalex.org/W2163005041","https://openalex.org/W2164979467","https://openalex.org/W2221475113","https://openalex.org/W2300554752","https://openalex.org/W2509745758","https://openalex.org/W2536255411","https://openalex.org/W2538556898","https://openalex.org/W2551436658","https://openalex.org/W2612070316","https://openalex.org/W2612544399","https://openalex.org/W2627595637","https://openalex.org/W2757479182","https://openalex.org/W2761748950","https://openalex.org/W2788031314","https://openalex.org/W2797880186","https://openalex.org/W2802346698","https://openalex.org/W2850153722","https://openalex.org/W2889140200","https://openalex.org/W2890897493","https://openalex.org/W2948008293","https://openalex.org/W2968383486","https://openalex.org/W2972981608","https://openalex.org/W4213190682","https://openalex.org/W4298051233"],"related_works":["https://openalex.org/W3183948672","https://openalex.org/W3173606202","https://openalex.org/W3110381201","https://openalex.org/W2948807893","https://openalex.org/W2778153218","https://openalex.org/W2758277628","https://openalex.org/W1531601525","https://openalex.org/W2112141997","https://openalex.org/W2060145807","https://openalex.org/W4248806346"],"abstract_inverted_index":{"HTTPS":[0,53],"is":[1],"principally":[2],"designed":[3],"for":[4],"secure":[5],"end-to-end":[6],"communication,":[7],"which":[8],"adds":[9],"confidentiality":[10],"and":[11],"integrity":[12],"to":[13,26],"sensitive":[14],"data":[15],"transmission.":[16],"While":[17],"several":[18],"man-in-the-middle":[19],"attacks":[20,55],"(e.g.,":[21,34],"SSL":[22],"Stripping)":[23],"are":[24],"available":[25],"break":[27],"the":[28,39,45],"secured":[29],"connections,":[30],"state-of-the-art":[31],"security":[32],"policies":[33],"HSTS)":[35],"have":[36],"significantly":[37],"increased":[38],"cost":[40],"of":[41],"successful":[42],"attacks.":[43],"However,":[44],"TLS":[46],"certificates":[47],"shared":[48],"by":[49],"multiple":[50],"domains":[51],"make":[52],"hijacking":[54],"possible":[56],"again.":[57]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":2},{"year":2023,"cited_by_count":3},{"year":2022,"cited_by_count":6},{"year":2021,"cited_by_count":3}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}