DocumentCode
1928005
Title
HTTP Session Management: Architecture and Cookies Security
Author
Ayadi, Ines ; Serhrouchni, Ahmed ; Pujolle, Guy ; Simoni, Noëmie
Author_Institution
ENST, Telecom ParisTech, Paris, France
fYear
2011
fDate
18-21 May 2011
Firstpage
1
Lastpage
7
Abstract
Web applications are an important target for security attacks. Most of these applications make use of cookies to maintain user state. Many attacks are carried out over these cookies in order to compromise network security. In this paper, we propose an architecture and a method of cookies security. This method aims to enforce cookies with integrity and confidentiality services. It was necessary to review the behavior of Reverse Proxy in order to apply these contributions. The approach has been quantitatively and qualitatively validated. The results of this validation are analyzed in this article.
Keywords
Internet; computer network management; computer network security; hypermedia; transport protocols; HTTP session management architecture; Web application; confidentiality service; cookies security; integrity service; network security; reverse proxy; security attack; Authentication; Browsers; Encapsulation; Protocols; Web servers;
fLanguage
English
Publisher
ieee
Conference_Titel
Network and Information Systems Security (SAR-SSI), 2011 Conference on
Conference_Location
La Rochelle
Print_ISBN
978-1-4577-0735-3
Type
conf
DOI
10.1109/SAR-SSI.2011.5931364
Filename
5931364
Link To Document