Title :
Top 10 Free Web-Mail Security Test Using Session Hijacking
Author :
Noiumkar, Preecha ; Chomsiri, Thawatchai
Author_Institution :
Mahasarakham Univ., Maha Sarakham
Abstract :
This research presents the results of the experimental about security level of the top 10 popular free Web-mail. These 10 Web mails were hacked by means of session hijacking. The researcher conducted this experiment on the LAN system and used information capturing technique to gain cookies and session ID inside cookies. Then, hijacking was conducted by using two hijacking methods. The first method, which was common and easy to conduct, used only one cookie. The second method, which was not very popular but offered high penetrating power, used all cookies (cookies cloned by SideJacking tools). The results show that the Web mails with the height security level are AOL Mail, GMX Mail and Yahoo Mail; and the Web mails with the low security level are Gmail, Inbox Mail and Hotmail.
Keywords :
Internet; electronic mail; local area networks; security of data; AOL Mail; GMX Mail; Gmail; Hotmail; Inbox Mail; LAN system; SideJacking tools; Yahoo Mail; cookies; free Web-mail security testing; information capturing technique; session ID; session hijacking; Cloning; Computer crime; Computer hacking; Information security; Information technology; Local area networks; Postal services; Testing; Uniform resource locators; Web server;
Conference_Titel :
Convergence and Hybrid Information Technology, 2008. ICCIT '08. Third International Conference on
Conference_Location :
Busan
Print_ISBN :
978-0-7695-3407-7
DOI :
10.1109/ICCIT.2008.324
