session-aware user authentication

8

COMCOM
2006

75views more COMCOM 2006»

SSL/TLS session-aware user authentication - Or how to effectively thwart the man-in-the-middle

13 years 5 months ago

Abstract. Man-in-the-middle attacks pose a serious threat to SSL/TLSbased electronic commerce applications, such as Internet banking. In this paper, we argue that most deployed use...

Rolf Oppliger, Ralf Hauser, David A. Basin

claim paper

Read More »

7

click to vote

COMPUTER
2008

86views more COMPUTER 2008»

SSL/TLS Session-Aware User Authentication

13 years 5 months ago

Download www.adnovum.ch

Man-in-the-middle (MITM) attacks pose a serious threat to SSL/TLS-based e-commerce applications, such as Internet banking. SSL/TLS session-aware user authentication can be used to ...

Rolf Oppliger, Ralf Hauser, David A. Basin

claim paper

Read More »

15

click to vote

COMPSEC
2008

99views more COMPSEC 2008»

SSL/TLS session-aware user authentication revisited

13 years 5 months ago

Download blog.namics.com

Man-in-the-middle (MITM) attacks pose a serious threat to SSL/TLS-based e-commerce applications, and there are only a few technologies available to mitigate the risks. In [OHB05], ...

Rolf Oppliger, Ralf Hauser, David A. Basin

claim paper

Read More »

10

click to vote

KIVS
2007
Springer

106views Computer Networks» more KIVS 2007»

A Proof of Concept Implementation of SSL/TLS Session-Aware User Authentication (TLS-SA)

13 years 11 months ago

Download www.inf.ethz.ch

Abstract Most SSL/TLS-based e-commerce applications employ conventional mechanisms for user authentication. These mechanisms—if decoupled from SSL/TLS session establishment—are...

Rolf Oppliger, Ralf Hauser, David A. Basin, Aldo R...

claim paper

Read More »

Sciweavers

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers