A System for Preventing Session Hijacking With a Token Based Fast Cookie Authentication

Authors

  • Khevana Shah  Information Technology, L.D. College of Engineering, Gujarat Technological University, Ahmedabad, Gujarat, India

Keywords:

Security, Session Hijacking, Cookie, Session cost, Number of transactions

Abstract

The direct or indirect utilization of social knowledge or trust relationships in human-computer authentication systems deployed in online or offline contexts.” A user authentication scheme that uses any form of social knowledge, utilizes users’ trust relationships, monitors users’ social contexts, or records users’ friend associations for granting or denying access to any resource is considered a social authentication scheme. In this study we analyze the security in basic prospective of type of authentication, possible threats and terms to protect authentication from that threat. The use of insecure cookies as a means to authenticate web transactions in collaborative and social media websites presents a hazard to users’ privacy. By proposed methodology we aim to provide higher level of security from this threats.

References

  1. "Robust and Fast Authentication of Session Cookies in Collaborative and Social Media Using Position-Indexed Hashing" by Amerah Alabrah, Mostafa Bassiouni Year 2013, IEEE.
  2. "Preventing session hijacking in collaborative applications with hybrid cache-supported one-way hash chains" by Amerah Alabrah and Mostafa Bassiouni, year 2014, in the IEEE.
  3. Alex X. Liu, Jason M. Kovacs , Mohamed G. Gouda "A secure cookie scheme" elsevier, 2012 Department of Computer Science and Engineering, Michigan State University, East Lansing, MI 48824-1266, USA Exis Web Solutions Department of Computer Sciences, The University of Texas at Austin, Austin, TX 78712-0233, USA DOI: 10.1016/j.comment.2012.01.013
  4. "Handling TCP-Session Hijacking With Transport Layer Defence Method (TLD) In Mobile Adhoc Networks " by K.Geetha, Department of Computer Science, Periyar College, Cuddalore, India in ARPN Journal of Engineering and Applied Science, Vol.11, No.11,2016 ISSN 1819-6608.
  5. "Social Authentication Applications, Attacks, Defence Strategies and Future Research Direction: A systematic review" by Noura Alomar, Mansour Alsaleh, Abdulrahman Alarifi, Year 2017, IEEE.
  6. "A Survey on Detection Tools and Prevention Techniques for Session Hijacking Attack" by D.Madhavi, Assistant Professor, V.R.Sidhhartha Engineering College, Vijayawada, A.P., India, in International Journal for Scientific Research & Development Vol.2, Issue 12], 2015.
  7. Joon S. Park and Ravi Sandhu, George Mason University "Secure cookie on the web" IEEE, 2002
  8. Chuan Yue, Mengjun Xie, Haining Wang "An automatic HTTP cookie management system", ELSEVIER, 2010 Department of Computer Science, The College of William and Mary, Williamsburg, VA23187, United States DOI: 10.1016/j.comment.2010.03.006
  9. Paul Rabinovich "Secure cross-domain cookies for HTTP", Springer, 2016 Security Software Development, Exostar, Herndon, USA.
  10. J. Brainard, A. Juels, R. L. Rivest, M. Szydlo, and M. Yung, "Fourth factor authentication: somebody you know," in Proceedings of the 13th ACM conference on Computer and communications security. ACM, 2006, pp. 168–178.

International Journal of Scientific Research in Science, Engineering and Technology

Downloads

Published

2018-04-30

Issue

Volume 4, Issue 4, March-April-2018

Section

Research Articles

License

Copyright (c) IJSRSET

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License.

How to Cite

[1]
Khevana Shah, " A System for Preventing Session Hijacking With a Token Based Fast Cookie Authentication, International Journal of Scientific Research in Science, Engineering and Technology(IJSRSET), Print ISSN : 2395-1990, Online ISSN : 2394-4099, Volume 4, Issue 4, pp.1429-1432, March-April-2018.