Preventing session hijacking in collaborative applications with hybrid cache-supported one-way hash chains

Alabrah, Amerah; Bassiouni, Mostafa A.

doi:10.4108/icst.collaboratecom.2014.257327

Cited by 10 publications

(4 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This manner it's simple for an assailant to predict consequent packet just in case it needs to forecast the TCP sequence range of consequent packet. In the application level, assailant takes over the session moreover and attempts to form new session with freshly made session token which may be taken or predicted in such method that it authenticates the assailant with the machine targeted to require over an existing connection or create new connections [14].…”

Section: A Session Hijacking Sessionmentioning

confidence: 99%

Untitled

2020

International Journal of Advanced Research in Computer and Comm

View full text Add to dashboard Cite

Web applications are programs that are available on the go. The increase in the number of customers accessing the web demands for technological complexity to manage the operation. The session established between the user and the server can be hijacked by an attacker by masquerading as an authorized user called Man-in-the-Middle (MITM). The target of the attacker is to have access to users' confidential records in the server for their own financial gain. It was predicted by Juniper research that by 2023 over 146 billion records will be tampered with and also electronic commerce will progressively increase by 66% in 2024 as the number on online transaction reaches $18.7 trillion. The security of Web applications have been a great concern to many online services. The paper, therefore developed a web application for e-Commerce for the detection and prevention of session hijacking in order to protect individual records from unauthorized user.

show abstract

Section: A Session Hijacking Sessionmentioning

confidence: 99%

Untitled

2020

International Journal of Advanced Research in Computer and Comm

View full text Add to dashboard Cite

show abstract

“…Even if an attacker gets the data it is very tough for him to find the real data from the packets. SSL channels use public key 28 bits and symmetric key 256 bits which make the encryptions method more complex, strong and more protected [2].…”

Section: Network Layer 41 Secure Socket Layermentioning

confidence: 99%

Session Hijacking and Prevention Technique

Baitha¹,

Vinod²

2018

IJET

View full text Add to dashboard Cite

Session Hijacking is an attack which is basically used to gain the unauthorized access between an authorized session connections. This is usually done to attack the social network website and banking websites in order to gain the access over the valid session as well as over the website too. These attacks are one of the commonly experienced cyber threats in today’s network. Most of the websites and networks are vulnerable from this kind of attack. For providing the protection I have given the multiple ways to protecting from this session hijacking attack. I have especially focused on one of the major attacks in this session hijacking attack SSL Strip attack which play very vital role in this kind of attack. Sometimes this session hijacking attack is also known as the Man in the Middle attack (MIMA).In this paper, I have covered many security mechanisms to stay away and protect you and the network. This session hijacking attack is very dangers for the security perspective. Even it can steal all users’ most sensitive data. This can create a big loss for the users financially. From all these types of attack, I have proposed many mechanisms to help the users to stay away from the attack. The main objective of this paper is to give detail information of session hijacking and countermeasure from session hijacking attacks.

show abstract

“…Spoofing and De authentication can still occur. The Author in [7] proposed a hybrid scheme that utilizes one-way hashing and sparse caching technique, but practically it is not possible to implement their research is focused on hashing, but they have not described how to prevent from the session hijacking attack.…”

Section: Literature Reviewsmentioning

confidence: 99%

A Novel Approach to Prevent Session Hijacking Attack

Tank¹,

Dalvi²

2018

IJCA

View full text Add to dashboard Cite

Session hijacking is also called as cookie hijacking in which the attacker exploits a valid computer session sometimes also called a session key or session token to get an unauthorized access to user system or back-end server.so to prevent this type of attack we are creating a protocol that will prevent the attacker from gaining the access of encrypted cookie and back-end server. We are developing a Reverse proxy server (RPS) with a One Time Cookie (OTC) and generating a browser fingerprinting, IP address of system, session ID such that Reverse Proxy server handles a request using One Time Cookie (OTC) protocol to prevent adversary from capturing and injecting the session credentials also we are using Blowfish Algorithm for the encryption purpose. If any of this parameter alter than we can be easily identified the attacker.

show abstract

Preventing session hijacking in collaborative applications with hybrid cache-supported one-way hash chains

Cited by 10 publications

References 13 publications

Untitled

Untitled

Session Hijacking and Prevention Technique

A Novel Approach to Prevent Session Hijacking Attack

Contact Info

Product

Resources

About