DigitalCertiAnalytics: A tool for collection and analysis of X.509v3 digital certificates
Anuar Elio Magliari
DigitalCertiAnalytics: A tool for collection and analysis of X.509v3 digital certificates.
Rel. Diana Gratiela Berbecaru. Politecnico di Torino, Corso di laurea magistrale in Ingegneria Informatica (Computer Engineering), 2025
|
Preview |
PDF (Tesi_di_laurea)
- Tesi
Licenza: Creative Commons Attribution Share Alike. Download (11MB) | Preview |
|
|
Archive (ZIP) (Documenti_allegati)
- Altro
Licenza: Creative Commons Attribution Share Alike. Download (186MB) |
Abstract
The progressive evolution of digital communications requires ever more accurate and sophisticated protection, which is why this thesis focuses on the in-depth analysis of digital certificates, fundamental elements for ensuring the integrity and protection of information. The work is divided into two main macro sections: on the one hand, it offers a theoretical examination that describes how certificates work, illustrating the various types of certificates (EV, OV, DV), the chain structure and control mechanisms such as the Signed Certificate Timestamp (SCT) and Certificate Transparency (CT), with particular attention to the implications in terms of security and privacy. On the other hand, the original contribution of the thesis takes the form of the implementation of DigitalCertiAnalytics, a software designed ad hoc for the collection, verification and analysis of certificates, capable of operating on large-scale datasets, as demonstrated by the study carried out on 20 million domains.
The software has been developed to operate on data from heterogeneous sources, such as DomCop and Google CrUX, to assess the validity, distribution and anomalies present in certificate chains, highlighting differences in the presence of SCT, performance and privacy impacts, and validation processes
Tipo di pubblicazione
URI
![]() |
Modifica (riservato agli operatori) |
