DocumentCode :
660815
Title :
A Security Analysis of Two Commercial Browser and Cloud Based Password Managers
Author :
Rui Zhao ; Chuan Yue ; Kun Sun
Author_Institution :
Univ. of Colorado, Colorado Springs, CO, USA
fYear :
2013
fDate :
8-14 Sept. 2013
Firstpage :
448
Lastpage :
453
Abstract :
In this paper, we analyze the security of two very popular commercial password managers: Last Pass and Robo Form. Both of them are Browser and Cloud based Password Managers (BCPMs), and both of them have millions of active users worldwide. We investigate the security design and implementation of these two BCPMs with the focus on their underlying cryptographic mechanisms. We identify several vulnerabilities that could be exploited by outsider and insider attackers to break the security of these two BCPMs.
Keywords :
cloud computing; cryptography; message authentication; online front-ends; BCPM; LastPass; RoboForm; browser and cloud based password managers; commercial browser; commercial password managers; cryptographic mechanisms; insider attackers; outsider attackers; security analysis; security design; Browsers; Cloud computing; Cryptography; Force; Monitoring; Servers; Browser; cloud; password manager; security;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Social Computing (SocialCom), 2013 International Conference on
Conference_Location :
Alexandria, VA
Type :
conf
DOI :
10.1109/SocialCom.2013.70
Filename :
6693367
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=660815
بازگشت