You Call This Archaeology? Evaluating Web Archives for Reproducible Web Security Measurements

Hantke, Florian and Calzavara, Stefano and Wilhelm, Moritz and Rabitti, Alvise and Stock, Ben
(2023) You Call This Archaeology? Evaluating Web Archives for Reproducible Web Security Measurements.
In: ACM CCS 2023.
Conference: CCS ACM Conference on Computer and Communications Security

[img] Text
main.pdf
Download (1MB)

Abstract

Given the dynamic nature of the Web, security measurements on it suffer from reproducibility issues. In this paper we take a systematic look into the potential of using web archives for web security measurements. We first evaluate an extensive set of web archives as potential sources of archival data, showing the superiority of the Internet Archive with respect to its competitors. We then assess the appropriateness of the Internet Archive for historical web security measurements, detecting subtleties and possible pitfalls in its adoption. Finally, we investigate the feasibility of using the Internet Archive to simulate live security measurements, using recent archival data in place of live data. Our analysis shows that archive-based security measurements are a promising alternative to traditional live security measurements, yet reproducible by design. As an important contribution, we identify insights and best practices for future archive-based security measurements.

Item Type: Conference or Workshop Item (A Paper) (Paper)
Divisions: Ben Stock (Secure Web Applications Group, SWAG)
Conference: CCS ACM Conference on Computer and Communications Security
Depositing User: Ben Stock
Date Deposited: 23 May 2023 11:43
Last Modified: 23 May 2023 11:43
Primary Research Area: NRA5: Empirical & Behavioral Security
URI: https://publications.cispa.saarland/id/eprint/3953

Actions

Actions (login required)

View Item View Item
CISPA is powered by EPrints 3 which is developed by the School of Electronics and Computer Science at the University of Southampton. More information and software credits.