{"id":"https://openalex.org/W2745118957","doi":"https://doi.org/10.23919/tma.2017.8002897","title":"Push away your privacy: Precise user tracking based on TLS client certificate authentication","display_name":"Push away your privacy: Precise user tracking based on TLS client certificate authentication","publication_year":2017,"publication_date":"2017-06-01","ids":{"openalex":"https://openalex.org/W2745118957","doi":"https://doi.org/10.23919/tma.2017.8002897","mag":"2745118957"},"language":"en","primary_location":{"id":"doi:10.23919/tma.2017.8002897","is_oa":false,"landing_page_url":"https://doi.org/10.23919/tma.2017.8002897","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2017 Network Traffic Measurement and Analysis Conference (TMA)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5017629812","display_name":"Matthias Wachs","orcid":null},"institutions":[{"id":"https://openalex.org/I62916508","display_name":"Technical University of Munich","ror":"https://ror.org/02kkvpp62","country_code":"DE","type":"education","lineage":["https://openalex.org/I62916508"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Matthias Wachs","raw_affiliation_strings":["Network Architectures and Services Technical University of Munich (TUM)"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Network Architectures and Services Technical University of Munich (TUM)","institution_ids":["https://openalex.org/I62916508"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5047943038","display_name":"Quirin Scheitle","orcid":null},"institutions":[{"id":"https://openalex.org/I62916508","display_name":"Technical University of Munich","ror":"https://ror.org/02kkvpp62","country_code":"DE","type":"education","lineage":["https://openalex.org/I62916508"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Quirin Scheitle","raw_affiliation_strings":["Network Architectures and Services Technical University of Munich (TUM)"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Network Architectures and Services Technical University of Munich (TUM)","institution_ids":["https://openalex.org/I62916508"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5060144977","display_name":"Georg Carle","orcid":"https://orcid.org/0000-0002-2347-1839"},"institutions":[{"id":"https://openalex.org/I62916508","display_name":"Technical University of Munich","ror":"https://ror.org/02kkvpp62","country_code":"DE","type":"education","lineage":["https://openalex.org/I62916508"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Georg Carle","raw_affiliation_strings":["Network Architectures and Services Technical University of Munich (TUM)"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Network Architectures and Services Technical University of Munich (TUM)","institution_ids":["https://openalex.org/I62916508"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":1.3073,"has_fulltext":false,"cited_by_count":14,"citation_normalized_percentile":{"value":0.81759247,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"9"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8144656419754028},{"id":"https://openalex.org/keywords/traceability","display_name":"Traceability","score":0.6077622771263123},{"id":"https://openalex.org/keywords/encryption","display_name":"Encryption","score":0.6064611077308655},{"id":"https://openalex.org/keywords/identifier","display_name":"Identifier","score":0.5857732892036438},{"id":"https://openalex.org/keywords/authentication","display_name":"Authentication (law)","score":0.5707157254219055},{"id":"https://openalex.org/keywords/plain-text","display_name":"Plain text","score":0.5460512638092041},{"id":"https://openalex.org/keywords/certificate","display_name":"Certificate","score":0.5285446047782898},{"id":"https://openalex.org/keywords/eavesdropping","display_name":"Eavesdropping","score":0.5255557298660278},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.49976038932800293},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.47355738282203674},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.2682824730873108},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.1124197244644165}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8144656419754028},{"id":"https://openalex.org/C153876917","wikidata":"https://www.wikidata.org/wiki/Q899704","display_name":"Traceability","level":2,"score":0.6077622771263123},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.6064611077308655},{"id":"https://openalex.org/C154504017","wikidata":"https://www.wikidata.org/wiki/Q853614","display_name":"Identifier","level":2,"score":0.5857732892036438},{"id":"https://openalex.org/C148417208","wikidata":"https://www.wikidata.org/wiki/Q4825882","display_name":"Authentication (law)","level":2,"score":0.5707157254219055},{"id":"https://openalex.org/C46503548","wikidata":"https://www.wikidata.org/wiki/Q1145976","display_name":"Plain text","level":3,"score":0.5460512638092041},{"id":"https://openalex.org/C96865113","wikidata":"https://www.wikidata.org/wiki/Q2946816","display_name":"Certificate","level":2,"score":0.5285446047782898},{"id":"https://openalex.org/C2776788033","wikidata":"https://www.wikidata.org/wiki/Q320769","display_name":"Eavesdropping","level":2,"score":0.5255557298660278},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.49976038932800293},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.47355738282203674},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.2682824730873108},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.1124197244644165},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.23919/tma.2017.8002897","is_oa":false,"landing_page_url":"https://doi.org/10.23919/tma.2017.8002897","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2017 Network Traffic Measurement and Analysis Conference (TMA)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[{"id":"https://openalex.org/F4320324306","display_name":"Bayerische Akademie der Wissenschaften","ror":"https://ror.org/001rdaz60"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":19,"referenced_works":["https://openalex.org/W84745033","https://openalex.org/W1512251782","https://openalex.org/W1972524097","https://openalex.org/W1987283229","https://openalex.org/W2208157769","https://openalex.org/W2275269859","https://openalex.org/W2394784643","https://openalex.org/W2460326615","https://openalex.org/W2507742104","https://openalex.org/W2523421704","https://openalex.org/W2550748725","https://openalex.org/W2744444377","https://openalex.org/W2915352631","https://openalex.org/W2963562852","https://openalex.org/W6603458233","https://openalex.org/W6630623380","https://openalex.org/W6692854719","https://openalex.org/W6735669250","https://openalex.org/W6741799152"],"related_works":["https://openalex.org/W2956698276","https://openalex.org/W3034092580","https://openalex.org/W2305987222","https://openalex.org/W2952287887","https://openalex.org/W2071984515","https://openalex.org/W2056068660","https://openalex.org/W1539662624","https://openalex.org/W2182909806","https://openalex.org/W4298289352","https://openalex.org/W2101257797"],"abstract_inverted_index":{"The":[0],"design":[1],"and":[2,25,28,74,96,114,117,151,173],"implementation":[3],"of":[4,86,131,179,185],"cryptographic":[5],"systems":[6],"offer":[7],"many":[8],"subtle":[9],"pitfalls.":[10],"One":[11],"such":[12],"pitfall":[13],"is":[14,65],"that":[15,107,118],"cryptography":[16],"may":[17],"create":[18],"unique":[19,97],"identifiers":[20],"potentially":[21],"usable":[22],"to":[23,76,80,94,111,125,135,168,182],"repeatedly":[24],"precisely":[26,112],"re-identify":[27,113],"hence":[29],"track":[30,115,126],"users.":[31],"This":[32],"work":[33,142,167],"investigates":[34],"TLS":[35,190],"Client":[36],"Certificate":[37],"Authentication":[38],"(CCA),":[39],"which":[40],"currently":[41],"transmits":[42],"certificates":[43,99],"in":[44,189],"plain":[45],"text.":[46],"We":[47,105,139,163],"demonstrate":[48],"CCA's":[49],"impact":[50],"on":[51],"client":[52,98,103],"traceability":[53],"using":[54],"Apple's":[55],"Apple":[56,69,158],"Push":[57],"Notification":[58],"service":[59],"(APNs)":[60],"as":[61,188],"an":[62],"example.":[63],"APNs":[64,132],"used":[66],"by":[67,157],"all":[68],"products,":[70],"employs":[71],"plain-text":[72,180],"CCA,":[73],"aims":[75],"be":[77],"constantly":[78],"connected":[79],"its":[81],"backend.":[82],"Its":[83],"novel":[84],"combination":[85],"large":[87],"device":[88,92],"count,":[89],"constant":[90],"connections,":[91],"proximity":[93],"users":[95,116,133],"provides":[100],"for":[101,159,165],"precise":[102],"traceability.":[104],"show":[106],"passive":[108],"eavesdropping":[109],"allows":[110],"only":[119],"ten":[120],"interception":[121],"points":[122],"are":[123],"required":[124],"more":[127],"than":[128],"80":[129],"percent":[130],"due":[134],"global":[136],"routing":[137],"characteristics.":[138],"conduct":[140],"our":[141,149],"under":[143],"strong":[144],"ethical":[145],"guidelines,":[146],"responsibly":[147],"disclose":[148],"findings,":[150],"can":[152],"confirm":[153],"a":[154],"working":[155],"patch":[156],"the":[160,170],"highlighted":[161],"issue.":[162],"aim":[164],"this":[166],"provide":[169],"necessary":[171],"factual":[172],"quantified":[174],"evidence":[175],"about":[176],"negative":[177],"implications":[178],"CCA":[181,187],"boost":[183],"deployment":[184],"encrypted":[186],"1.3.":[191]},"counts_by_year":[{"year":2024,"cited_by_count":2},{"year":2023,"cited_by_count":1},{"year":2022,"cited_by_count":1},{"year":2021,"cited_by_count":3},{"year":2020,"cited_by_count":1},{"year":2019,"cited_by_count":1},{"year":2018,"cited_by_count":4},{"year":2017,"cited_by_count":1}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}