The Community for Technology Leaders
Green Image
Issue No. 03 - May-June (2017 vol. 21)
ISSN: 1089-7801
pp: 22-29
Mark O'Neill , Brigham Young University and Sandia National Laboratories
Scott Ruoti , Brigham Young University and Sandia National Laboratories
Kent Seamons , Brigham Young University
Daniel Zappala , Brigham Young University
ABSTRACT
TLS inspection -- inline decryption, inspection, and re-encryption of TLS traffic -- is a controversial practice used for both benevolent and malicious purposes. This article describes measurements of how often TLS inspection occurs and reports on a survey of the general public regarding the practice of TLS inspection. This helps inform security researchers and policymakers regarding current practices and user preferences.
INDEX TERMS
Encryption, Cryptography, Browsers, Privacy, Telecommunication traffic, Malware, Computer security, Usability,Internet/Web technologies, security and privacy, usability, measurement, TLS, SSL, HTTPS, TLS Proxy, TLS interception, TLS inspection, middlebox, certificates, certificate forgery, man-in-the-middle detection, notification, consent, user attitudes, Flash, Google Adwords, Amazon Mechanical Turk
CITATION
Mark O'Neill, Scott Ruoti, Kent Seamons, Daniel Zappala, "TLS Inspection: How Often and Who Cares?", IEEE Internet Computing, vol. 21, no. , pp. 22-29, May-June 2017, doi:10.1109/MIC.2017.58
214 ms
(Ver 3.3 (11022016))