November 21, 2024

Posts Comments

A Brief History of Multi-Perspective Issuance Corroboration

July 5, 2024 by 8 Comments

By Henry Birge-Lee, Grace Cimaszewski, Liang Wang, Cyrill Krähenbühl, and Prateek Mittal “Multi-Perspective Issuance Corroboration” (or “MPIC”) is currently under discussion as an industry-wide standard by the CA/Browser Forum Server Certificate Working Group, and possibly by other Forum Working Groups in the future (i.e., the S/MIME Working Group). This is a promising idea that aims […]

Filed Under: Infrastructure, Privacy & Security Tagged With: , ,

Announcing the Open Multi-Perspective Issuance Corroboration Project

February 13, 2024 by 1 Comment

By Henry Birge-Lee, Grace Cimaszewski, Liang Wang, Cyrill Krähenbühl, Kerstin Fagerstrom, and Prateek Mittal Today we are announcing the development of a new open source project by our research group at Princeton University designed to strengthen certificate issuance against Border Gateway Protocol (BGP) routing attacks. Recent years have seen an uptick in a very powerful […]

Filed Under: Infrastructure, Privacy & Security Tagged With: , , , , ,

Securing the Web PKI

December 21, 2023 by Leave a Comment

CITP is releasing a report today based on a two day in-person workshop on the security of the Web Public Key Infrastructure (Web PKI) we held last year. The workshop convened a multistakeholder gathering of experts from across the internet infrastructure, including browser developers, certificate authorities, content delivery networks, cloud providers, civil society, and academia. […]

Filed Under: CITP Events, Privacy & Security

Security Analysis of the Dominion ImageCast X

June 14, 2023 by

Today, the Federal District Court for the Northern District of Georgia permitted the public release of Security Analysis of Georgia’s ImageCast X Ballot Marking Devices, a 96-page report that describes numerous security problems affecting Dominion voting equipment used in Georgia and other states.

Filed Under: Privacy & Security, Voting Tagged With: ,

Cross-Layer Security: A Holistic View of Internet Security 

September 20, 2022 by

By Henry Birge-Lee, Liang Wang, Grace Cimaszewski, Jennifer Rexford and Prateek Mittal On February 3, 2022, attackers launched a highly effective attack against the Korean cryptocurrency exchange KLAYswap. We discussed the details of this attack in our earlier blog post “Attackers exploit fundamental flaw in the web’s security to steal $2 million in cryptocurrency.” However, […]

Filed Under: Cryptocurrencies, Infrastructure, Privacy & Security, Web3 Tagged With: , , , , , ,