1. TLS-N: Non-repudiation over TLS Enabling Ubiquitous Content Signing 2018 NDSS TLS
    Hubert Ritzdorf and Karl Wüst and Arthur Gervais and Guillaume Felley and Srdjan Capkun
    [View PDF on eprint.iacr.org]
    [Show BibTex Citation]

    @inproceedings{DBLP:conf/ndss/RitzdorfWGFC18,
    author = {Hubert Ritzdorf and
    Karl W{\"{u}}st and
    Arthur Gervais and
    Guillaume Felley and
    Srdjan Capkun},
    title = {{TLS-N:} Non-repudiation over {TLS} Enablign Ubiquitous Content Signing},
    booktitle = {25th Annual Network and Distributed System Security Symposium, {NDSS}
    2018, San Diego, California, USA, February 18-21, 2018},
    year = {2018},
    url = {http://wp.internetsociety.org/ndss/wp-content/uploads/sites/25/2018/02/ndss2018\_09-4\_Ritzdorf\_paper.pdf},
    timestamp = {Thu, 09 Aug 2018 10:57:16 +0200},
    biburl = {https://dblp.org/rec/bib/conf/ndss/RitzdorfWGFC18},
    bibsource = {dblp computer science bibliography, https://dblp.org}
    }

An internet user wanting to share observed content is typically restricted to primitive techniques such as screenshots, web caches or share button-like solutions. These acclaimed proofs, however, are either trivial to falsify or require trust in centralized entities (e.g., search engine caches).

This motivates the need for a seamless and standardized internet-wide non-repudiation mechanism, allowing users to share data from news sources, social websites or financial data feeds in a provably secure manner.

Additionally, blockchain oracles that enable data-rich smart contracts typically rely on a trusted third party (e.g., TLSNotary or Intel SGX). A decentralized method to transfer web-based content into a permissionless blockchain without additional trusted third party would allow for smart contract applications to flourish.

In this work, we present TLS-N, the first TLS extension that provides secure non-repudiation and solves both of the mentioned challenges. TLS-N generates non-interactive proofs about the content of a TLS session that can be efficiently verified by third parties and blockchain based smart contracts. As such, TLS-N increases the accountability for content provided on the web and enables a practical and decentralized blockchain oracle for web content. TLS-N is compatible with TLS 1.3 and adds a minor overhead to a typical TLS session. When a proof is generated, parts of the TLS session (e.g., passwords, cookies) can be hidden for privacy reasons, while the remaining content can be verified.

Practical demonstrations can be found at https://tls-n.org/.

  1.