S. Chokhani, W. Ford, R. Sabett, C. Merrill, and S. Wu, Internet X.509 Public Key Infrastructure: Certificate Policy and Certification Practices Framework, RFC, vol.3647, 2003.

C. Forum, Baseline requirements for the issuance and management of policy-trusted certificates, 2013.

I. Security and R. Group, Let's encrypt overview, 2016.

I. Security and R. Group, Let's encrypt statistics, 2016.

R. Barnes, J. Hoffman-andrews, and J. Kasten, Automatic certificate management environment (acme), 2016.

B. Blanchet, B. Smyth, and V. Cheval, Proverif 1.90: Automatic cryptographic protocol verifier, user manual and tutorial, 2014.

A. Delignat-lavaud, M. Abadi, A. Birrell, I. Mironov, T. Wobber et al., Web PKI: Closing the Gap between Guidelines and Practices, Proceedings 2014 Network and Distributed System Security Symposium, 2014.
DOI : 10.14722/ndss.2014.23305

URL : https://hal.archives-ouvertes.fr/hal-01102254

O. Levillain, B. Arnaudébalardarnaud´arnaudébalard, H. Morin, and . Debar, One year of SSL internet measurement, Proceedings of the 28th Annual Computer Security Applications Conference on, ACSAC '12, pp.11-20
DOI : 10.1145/2420950.2420953

URL : https://hal.archives-ouvertes.fr/hal-00768258

C. Comodo and . Ltd, Comodo Certification Practice Statement, Comodo CA Ltd, 2015.

. Digicert, DigiCert Certification Practices Statement, 2016.

G. Inc, GeoTrust Certification Practice Statement, 2016.

C. Globalsign, GlobalSign CA Certification Practice Statement, 2016.

I. Security and R. Group, Certification Practice Statement, 2016.

C. Startcom and . Ltd, StartCom Certificate Policy and Practice Statements, 2016.

R. Usters and T. Truderung, Using ProVerif to analyze protocols with Diffie- Hellman exponentiation, IEEE Computer Security Foundations Symposium (CSF), pp.157-171, 2009.

G. Ateniese and S. Mangard, A new approach to DNS security (DNSSEC), Proceedings of the 8th ACM conference on Computer and Communications Security , CCS '01, pp.86-95, 2001.
DOI : 10.1145/501983.501996

P. Hoffman and J. Schlyter, The dns-based authentication of named entities (dane) transport layer security (tls) protocol: Tlsa, 2012.
DOI : 10.17487/rfc6698