# Certificate Transparency with Privacy

**Authors:** Saba Eskandarian, Eran Messeri, Joseph Bonneau, Dan Boneh

arXiv: 1703.02209 · 2017-08-08

## TL;DR

This paper presents privacy-preserving mechanisms for Certificate Transparency logs, allowing browser audits without compromising user privacy and extending support to non-public subdomains, enhancing CT's practicality.

## Contribution

It introduces practical solutions for privacy-preserving CT log auditing and support for non-public subdomains, addressing key privacy challenges in CT deployment.

## Key findings

- Developed a privacy-preserving CT log auditing mechanism
- Extended CT to support non-public subdomains
- Demonstrated the practicality of the proposed solutions

## Abstract

Certificate transparency (CT) is an elegant mechanism designed to detect when a certificate authority (CA) has issued a certificate incorrectly. Many CAs now support CT and it is being actively deployed in browsers. However, a number of privacy-related challenges remain. In this paper we propose practical solutions to two issues. First, we develop a mechanism that enables web browsers to audit a CT log without violating user privacy. Second, we extend CT to support non-public subdomains.

## Full text

_Full body text omitted from this summary view._ Fetch the complete paper as Markdown: https://tomesphere.com/paper/1703.02209/full.md

## Figures

9 figures with captions in the complete paper: https://tomesphere.com/paper/1703.02209/full.md

## References

52 references — full list in the complete paper: https://tomesphere.com/paper/1703.02209/full.md

---
Source: https://tomesphere.com/paper/1703.02209