In this paper we present Laribus, a peer-to-peer network designed to detect local man-in-the-middle attacks against\nsecure socket layer/transport layer security (SSL/TLS). With Laribus, clients can validate the authenticity of a certificate\npresented to them by retrieving it from different vantage points on the network. Unlike previous solutions, clients do\nnot have to trust a central notary service nor do they have to rely on the cooperation of website owners. The Laribus\nnetwork is based on a social network graph, which allows users to form notary groups that improve both privacy and\navailability. It integrates several well-known techniques, such as secret sharing, ring signatures, layered encryption,\nrange queries, and a distributed hash table (DHT), to achieve privacy-aware queries, scalability, and decentralization.\nWe present the design and core components of Laribus, discuss its security properties, and also provide results from a\nsimulation-based feasibility study.
Loading....