Msc course Cryptography project, data analysis part.
In the analysis, I analyzed the data by school order in following aspects:
- Number of success in applying https and number of failure and stored the failed websites.
- The TLS/SSL method and encryption between website and current user.
- The valid period of each’s certificate
- Digital certificate algorithm.
- Certificate holder’s public key encryption
- Certificate issuer for each website We used Python to collect over data from an excel file and applied statistic.
From direct sense of the result, we could say
- most schools have a https deployment rate over 70% (Lingnan University even have 100% deployment rate) while HKUST might be one exception with only 51% deployment rate.
- TLS1.2 is commonly used upon websites that are able to deploy https protocol, which means the connection is well-secured upon those websites.
- The validation of certificate varies from several months to around 2 years, while no certificate will be valid constantly for over 3 years, which requires websites to re-apply for certificate to stay secure.
- The certificate algorithms of these websites are all sha256RSA
- The certificate holder’s public key encryptions are all using RSA
- The certificate issuers come from DigiCert, Let’s Encrypt, GoDaddy, Amazon, Sectigo, etc. a single school may contain several of these or use only one of them,
Deployment overview:
(n,m,f) denotes n = total website numbers of each school,
m = sccusses deployment numbers,
f = failure deployment numbers
{'hku': (96, 77, 19),
'ln': (95, 95, 0),
'ust': (98, 50, 48),
'eduhk': (94, 92, 2)}