Network security: private communication in a public world
Network security: private communication in a public world
Authentication, access control, and audit
ACM Computing Surveys (CSUR)
Cryptography and network security (2nd ed.): principles and practice
Cryptography and network security (2nd ed.): principles and practice
Public-key cryptography and password protocols
ACM Transactions on Information and System Security (TISSEC)
Network Security Essentials: Applications and Standards
Network Security Essentials: Applications and Standards
ICISC '00 Proceedings of the Third International Conference on Information Security and Cryptology
Slide Attacks with a Known-Plaintext Cryptanalysis
ICISC '01 Proceedings of the 4th International Conference Seoul on Information Security and Cryptology
Authentication for Distributed Web Caches
ESORICS '02 Proceedings of the 7th European Symposium on Research in Computer Security
| Hi-index | 0.00 |
It is general process of client authentication for a user to gain authority by the user's ID and password. But using client's password is not always secure because of various security attacks of many opponents. In this paper, we propose an improved client authentication adding session authentication process to current systems based on user's ID and password. Before a client requests information processing to web application servers, the user acquire session password from authentication server. The session authentication procedure makes our systems secure during transaction processing by using duplicated password system. And using our proposed session authentication, we can detect intrusion during unauthorized client's transaction because we can know immediately using a stored session authentication password when a hacker attacks our network or computer systems.