Henry Birge-Lee, Author at Freedom to Tinker

A Brief History of Multi-Perspective Issuance Corroboration

July 5, 2024 by Henry Birge-Lee 8 Comments

By Henry Birge-Lee, Grace Cimaszewski, Liang Wang, Cyrill Krähenbühl, and Prateek Mittal “Multi-Perspective Issuance Corroboration” (or “MPIC”) is currently under discussion as an industry-wide standard by the CA/Browser Forum Server Certificate Working Group, and possibly by other Forum Working Groups in the future (i.e., the S/MIME Working Group). This is a promising idea that aims […]

Filed Under: Infrastructure, Privacy & Security Tagged With: BGP, PKI, Security

Announcing the Open Multi-Perspective Issuance Corroboration Project

February 13, 2024 by Henry Birge-Lee 1 Comment

By Henry Birge-Lee, Grace Cimaszewski, Liang Wang, Cyrill Krähenbühl, Kerstin Fagerstrom, and Prateek Mittal Today we are announcing the development of a new open source project by our research group at Princeton University designed to strengthen certificate issuance against Border Gateway Protocol (BGP) routing attacks. Recent years have seen an uptick in a very powerful […]

Filed Under: Infrastructure, Privacy & Security Tagged With: BGP, CA, Certificate Authorities, PKI, Public Key Infrastructure, Security

Cross-Layer Security: A Holistic View of Internet Security

September 20, 2022 by Henry Birge-Lee

By Henry Birge-Lee, Liang Wang, Grace Cimaszewski, Jennifer Rexford and Prateek Mittal On February 3, 2022, attackers launched a highly effective attack against the Korean cryptocurrency exchange KLAYswap. We discussed the details of this attack in our earlier blog post “Attackers exploit fundamental flaw in the web’s security to steal $2 million in cryptocurrency.” However, […]

Filed Under: Cryptocurrencies, Infrastructure, Privacy & Security, Web3 Tagged With: BGP, CA, Certificate Authorities, KLAYswap, PKI, Public Key Infrastructure, Security

Attackers exploit fundamental flaw in the web’s security to steal $2 million in cryptocurrency

March 9, 2022 by Henry Birge-Lee

By Henry Birge-Lee, Liang Wang, Grace Cimaszewski, Jennifer Rexford and Prateek Mittal On Thursday, Feb. 3, 2022, attackers stole approximately $2 million worth of cryptocurrency from users of the Korean crypto exchange KLAYswap. This theft, which was detailed in a Korean-language blog post by the security firm S2W, exploited systemic vulnerabilities in the Internet’s routing […]

Filed Under: Uncategorized Tagged With: BGP, cryptocurrency, Internet, KLAYswap, PKI, TLS

A Brief History of Multi-Perspective Issuance Corroboration

Announcing the Open Multi-Perspective Issuance Corroboration Project

Cross-Layer Security: A Holistic View of Internet Security

Attackers exploit fundamental flaw in the web’s security to steal $2 million in cryptocurrency

Contributors

Archives by Month

A Brief History of Multi-Perspective Issuance Corroboration

Announcing the Open Multi-Perspective Issuance Corroboration Project

Cross-Layer Security: A Holistic View of Internet Security

Attackers exploit fundamental flaw in the web’s security to steal $2 million in cryptocurrency

What We Discuss

Contributors

Archives by Month