Title :
A Web Client Authentication System Using Smart Card for e-Systems: Initial Testing and Evaluation
Author :
Aljawarneh, Shadi ; Dababneh, Maher ; Hosseny, Hiba ; Alwadi, Eklass
Author_Institution :
Fac. of Inf. Technol., Isra Univ., Amman, Jordan
Abstract :
Although a number of techniques exist for authentication, web sites and web applications continue to use weak authentication schemes that are vulnerable for attack, particularly in e-commerce environments. These challenges are often occurred because of careless use of authenticators stored on the client-side. In this paper, we have developed a web client authentication system using smart card, called Dynamic HMAC Validation System (DHVS) to make sure that the requested confidential digital object is authenticated and hence no tampering can be performed upon it particularly at the client-side. The DHVS is based on HMAC technology where the key that is to be used for ciphering is dynamically generated every time the client sends a request. Our initial testing shows the DHVS could be able to authenticate multimedia content transactions and payment.
Keywords :
Internet; Web sites; authorisation; electronic commerce; multimedia computing; smart cards; Web sites; World Wide Web; client authentication system; dynamic HMAC validation system; e-commerce; e-systems; multimedia content payment authentication; multimedia content transactions authentication; smart card; Authentication; Information security; Information technology; Logic; Network servers; Power system security; Protection; Smart cards; System testing; Web server; HMAC; Web authentication; data integrity; security vulnerabilities; tampering; web application; web based-systems;
Conference_Titel :
Digital Society, 2010. ICDS '10. Fourth International Conference on
Conference_Location :
St. Maarten
Print_ISBN :
978-1-4244-5805-9
DOI :
10.1109/ICDS.2010.40
