• DocumentCode
    2898085
  • Title

    Sensitive Data Requests: Do Sites Ask Correctly?

  • Author

    Shue, Craig A. ; Gupta, Minaxi

  • Author_Institution
    Comput. Sci. Dept., Indiana Univ., Bloomington, IN, USA
  • fYear
    2009
  • fDate
    14-18 June 2009
  • Firstpage
    1
  • Lastpage
    5
  • Abstract
    To ensure the security of sensitive Web content, an organization must use TLS and do so correctly. However, little is known about how TLS is actually used on the Web. In this work, we perform large-scale Internet-wide measurements to determine if Web sites use TLS when needed and when they do, if they use it correctly. We find hundreds of thousands of pages where TLS is either not used when it should be or is used improperly, putting sensitive data at risk.
  • Keywords
    Web sites; content management; security of data; transport protocols; TLS protocol; Web page; Web site; large-scale Internet-wide measurement; sensitive Web content security; sensitive data request; transport layer security; Access protocols; Communications Society; Computer science; Computer security; Data security; Internet; Large-scale systems; Protection; Transport protocols; Web pages;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Communications, 2009. ICC '09. IEEE International Conference on
  • Conference_Location
    Dresden
  • ISSN
    1938-1883
  • Print_ISBN
    978-1-4244-3435-0
  • Electronic_ISBN
    1938-1883
  • Type

    conf

  • DOI
    10.1109/ICC.2009.5199450
  • Filename
    5199450
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2898085