Preventing session hijacking in collaborative applications with hybrid cache-supported one-way hash chains

10th IEEE International Conference on Collaborative Computing: Networking, Applications and Worksharing Pub Date : 2014-11-11 DOI:10.4108/ICST.COLLABORATECOM.2014.257327

Amerah A. Alabrah, M. Bassiouni

{"title":"Preventing session hijacking in collaborative applications with hybrid cache-supported one-way hash chains","authors":"Amerah A. Alabrah, M. Bassiouni","doi":"10.4108/ICST.COLLABORATECOM.2014.257327","DOIUrl":null,"url":null,"abstract":"Session hijacking attacks of social network websites are one of the commonly experienced cyber threats in today's Internet especially with the unprecedented proliferation of wireless networks and mobile applications. To address this problem, we propose a cache supported hybrid two-dimensional one-way hash construction to handle social networks' user sessions authentication in collaborative applications efficiently. The solution, which presents a major redesign from [18], is based on utilizing two-dimensional OHC chains equipped with sparse caching capabilities to carry out authentication during social networks users' sessions. We analyze the proposed hybrid scheme mathematically to determine the cost of authentication and develop a quartic equation to check the optimal configuration of the two dimensions. We also evaluate the hybrid scheme with simulation experiments of different configurations and scenarios. The results of the simulation experiments show that the hybrid scheme improves performance of the OHC tremendously while efficiently and securely handling authentication.","PeriodicalId":432345,"journal":{"name":"10th IEEE International Conference on Collaborative Computing: Networking, Applications and Worksharing","volume":"44 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2014-11-11","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"11","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"10th IEEE International Conference on Collaborative Computing: Networking, Applications and Worksharing","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.4108/ICST.COLLABORATECOM.2014.257327","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 11

Abstract

Session hijacking attacks of social network websites are one of the commonly experienced cyber threats in today's Internet especially with the unprecedented proliferation of wireless networks and mobile applications. To address this problem, we propose a cache supported hybrid two-dimensional one-way hash construction to handle social networks' user sessions authentication in collaborative applications efficiently. The solution, which presents a major redesign from [18], is based on utilizing two-dimensional OHC chains equipped with sparse caching capabilities to carry out authentication during social networks users' sessions. We analyze the proposed hybrid scheme mathematically to determine the cost of authentication and develop a quartic equation to check the optimal configuration of the two dimensions. We also evaluate the hybrid scheme with simulation experiments of different configurations and scenarios. The results of the simulation experiments show that the hybrid scheme improves performance of the OHC tremendously while efficiently and securely handling authentication.

查看原文本刊更多论文

使用混合缓存支持的单向散列链防止协作应用程序中的会话劫持

社交网站会话劫持攻击是当今互联网上常见的网络威胁之一，特别是随着无线网络和移动应用程序的空前普及。为了解决这个问题，我们提出了一种支持缓存的混合二维单向哈希构造，以有效地处理协作应用中社交网络用户会话的身份验证。该解决方案是对[18]的重大重新设计，它基于利用具有稀疏缓存功能的二维OHC链在社交网络用户会话期间进行身份验证。我们从数学上分析了所提出的混合方案，以确定认证成本，并建立了一个四次方程来检查两个维度的最优配置。通过不同配置和场景的仿真实验，对混合方案进行了评价。仿真实验结果表明，该混合方案在有效、安全地处理身份验证的同时，极大地提高了OHC的性能。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

10th IEEE International Conference on Collaborative Computing: Networking, Applications and Worksharing

自引率

0.00%

发文量