This page is read only. You can view the source, but not change it. Ask your administrator if you think this is wrong. ====== Evolution of SSL/TLS Indicators and Warnings in Web Browsers [SPW 2019] ====== ~~NOTOC~~ <grid> <col xs="12" sm="8" lg="8"> <TEXT size="large"> \_{{fa>user}}\_\_//Authors:// Lydia Kraus, Martin Ukrop, Vashek Matyas and Tobias Fiebig {{fa>user-circle-o}}\_//Primary contact:// Lydia Kraus %%<%%<lydia.kraus@mail.muni.cz>%%>%% {{fa>bullhorn}}\_//Conference:// [[https://www.cl.cam.ac.uk/events/spw/2019/|Security Protocols Workshop 2019]] \_{{fa>id-badge}}\_\_//DOI:// [[https://doi.org/10.1007/978-3-030-57043-9_25]] </TEXT> </col> <col xs="12" sm="4" lg="4"> <TEXT align="right"> <button type="warning" icon="fa fa-file-pdf-o">[[https://crocs.fi.muni.cz/_media/publications/pdf/2019-spw-kraus.pdf|Pre-print PDF]]</button> \_ <popover trigger="focus" title="Not yet available" content="Presentation will be added soon."> <button icon="fa fa-file-image-o">Presentation</button> </popover> \_ <button collapse="bibtex" icon="fa fa-file-code-o">BiBTeX</button> </TEXT> </col> </grid> <collapse id="bibtex" collapsed="true"> @InProceedings{2019-spw-kraus, Title = {Evolution of SSL/TLS Indicators and Warnings in Web Browsers}, Author = {Lydia Kraus and Martin Ukrop and Vashek Matyas and Tobias Fiebig}, BookTitle = {27th International Workshop on Security Protocols (SPW 2019)}, Year = {2020}, Publisher = {Springer International Publishing}, Pages = {267--280}, DOI = {10.1007/978-3-030-57043-9_25}, } </collapse> <panel type="default" title="Abstract"> The creation of the World Wide Web (WWW) in the early 1990’s finally made the Internet accessible to a wider part of the population. With this increase in users, security became more important. To address confidentiality and integrity requirements on the web, Netscape—by then a major web browser vendor—presented the Secure Socket Layer (SSL), later versions of which were renamed to Transport Layer Security (TLS). In turn, this necessitated the introduction of both security indicators in browsers to inform users about the TLS connection state and also of warnings to inform users about potential errors in the TLS connection to a website. Looking at the evolution of indicators and warnings, we find that the qualitative data on security indicators and warnings, i.e., screen shots of different browsers over time is inconsistent. Hence, in this paper we outline our methodology for collecting a comprehensive data set of web browser security indicators and warnings, which will enable researchers to better understand how security indicators and TLS warnings in web browsers evolved over time. </panel> ===== Further research ===== Based on the ideas presented in this paper, we started developing a tool for automatic collection of SSL/TLS warnings and errors in different browser. The tool under development can be found on the lab's GitHub profile. <button type="primary" icon="fa fa-github">[[https://github.com/crocs-muni/tls-warning-collector|TLS warning collector]]</button>