S/MIME Certificate Test Suite

Yagmur Fidaner; Aysun Coskun; Tamer Ergun

doi:10.55549/epstem.1406237

Conference Paper

Year 2023, Volume: 24, 83 - 88, 30.11.2023

Yagmur Fidaner Aysun Coskun Tamer Ergun

https://doi.org/10.55549/epstem.1406237

Abstract

References

CA/Browser Forum. (2022, September 29). Minutes of the CA/Browser Forum teleconference. Retrieved from https://cabforum.org/2022/09/29/2022-09-29-minutes-of-the-ca-browser-forum-teleconference/ CA/Browser Forum. (2023, August 7). CA/ Browser Forum. Retrieved, from https://cabforum.org/ CA/Browser Forum. (2023). Baseline requirements for the issuance and management of publicly trusted S/MIME certificates. Retrieved from https://cabforum.org/wp-content/uploads/CA-Browser-Forum-SMIMEBR-1.0.0.pdf

S/MIME Certificate Test Suite

Year 2023, Volume: 24, 83 - 88, 30.11.2023

Yagmur Fidaner Aysun Coskun Tamer Ergun

https://doi.org/10.55549/epstem.1406237

Abstract

In today's world, email usage has become a necessity. Emails, with a large user base, serve various functions not only for personal purposes but also for facilitating communication between teams in the business world and acting as a point of contact for organizations with their customers. Emails that have infiltrated our lives are also at the center of data breaches, leaks, and malicious attacks. To ensure email security, it is possible to send digitally signed and encrypted emails using the public key infrastructure-based S/MIME certificates. The existing standards for S/MIME certificates were deemed insufficient, and in 2023, for the first time, the Certificate Authority/Browser (CA/B) Forum, consisting of Certificate Authorities (CA) and application software providers and recognized as an international authority, published the S/MIME Baseline Requirements (BR) document. While compliance with the Baseline Requirements document published by the CA/B Forum ensures reliability through conformity checks for SSL certificates used in web security, this audit was considered insufficient. To monitor and audit SSL certificates, the Certificate Transparency project was introduced, aiming to provide an open structure to safeguard the certificate issuance process. However, in reliable S/MIME certificates, the control mechanism is limited to BR audits. The study establishes a comprehensive S/MIME certificate public key infrastructure that allows analyzing email applications; behaviors in the face of certificates that do not comply with the BR during the certificate validation phase. Additionally, the study aims to develop a user application that enables end-users to test the security and compliance of certificates with the BR.

Keywords

S/mime, Email, Public key infrastructure, Certificate, Security

References

CA/Browser Forum. (2022, September 29). Minutes of the CA/Browser Forum teleconference. Retrieved from https://cabforum.org/2022/09/29/2022-09-29-minutes-of-the-ca-browser-forum-teleconference/ CA/Browser Forum. (2023, August 7). CA/ Browser Forum. Retrieved, from https://cabforum.org/ CA/Browser Forum. (2023). Baseline requirements for the issuance and management of publicly trusted S/MIME certificates. Retrieved from https://cabforum.org/wp-content/uploads/CA-Browser-Forum-SMIMEBR-1.0.0.pdf

There are 1 citations in total.

Details

Primary Language	English
Subjects	Software Engineering (Other)
Journal Section	Articles
Authors	Yagmur Fidaner Aysun Coskun Tamer Ergun
Early Pub Date	December 18, 2023
Publication Date	November 30, 2023
Published in Issue	Year 2023Volume: 24

Cite

APA	Fidaner, Y., Coskun, A., & Ergun, T. (2023). S/MIME Certificate Test Suite. The Eurasia Proceedings of Science Technology Engineering and Mathematics, 24, 83-88. https://doi.org/10.55549/epstem.1406237