Merkle tree authentication of HTTP responses

@inproceedings{Bayardo2005MerkleTA,
  title={Merkle tree authentication of HTTP responses},
  author={Roberto J. Bayardo and Jeffrey S. Sorensen},
  booktitle={WWW},
  year={2005}
}
We propose extensions to existing web protocols that allow proofs of authenticity of HTTP server responses, whether or not the HTTP server is under the control of the publisher. These extensions protect users from content that may be substituted by malicious servers, and therefore have immediate applications in improving the security of web caching, mirroring, and relaying systems that rely on untrusted machines [2,4]. Our proposal relies on Merkle trees to support 200 and 404 response… CONTINUE READING
Highly Cited
This paper has 19 citations. REVIEW CITATIONS