[SSL Observatory] SSL Observatory data access?
James Pleger
jp at sheeple.us
Tue Mar 1 16:47:38 PST 2016
I would also be interested in this as well. We have been doing quite a
bit of pivoting and identification of bad stuff that is tied to SSL
certificates(think malware, MITM certs, etc.). It would be awesome if
we could expose this so analysts can find more data that is coming
from browsers.
Would someone from the observatory project want to chat with us with
regards to this? Maybe we could work together to expose this data in
an easier manner for researchers to use.
Right now we expose certificate data through passivetotal.org, which
has API access(though limited number of queries). We actively collect
this through crawling and scans, but would love to see more data from
other sources.
https://api.passivetotal.org/api/docs/#api-SSL_Certificates-GetV2SslCert
ificateHistoryQuery
On 3/1/16 3:16 AM, Martin Schmiedecker wrote:
> Hi there!
>
> I was wondering, is there any way to query the SSL observatory for seen
> certificates? We will submit a paper about TLS notary services shortly
> (ping me if you are interested in a preprint), and the data from the EFF
> observatory would make another wonderful vantage point.
>
> Long story short: ICSI works great but has a rather confined scope, and
> convergence as well as perspectives are both rather dead.
>
> Are there plans to release the data, or build an API to query it similar
> to the ICSI notary? I'd be happy to help get this data published, host
> it on one of my servers, or help pushing it in some other way.
>
> We previously published our collected certificates for email ports at
> scans.io [1], and I'm sure they'd would be happy to integrate the data
> from HTTPS Everywhere into censys. Let me know what you think.
>
> Thx, Martin
>
>
> [1] https://scans.io/study/sba-email
>
More information about the Observatory
mailing list