HTTP传输中cookie的隐私和安全性

2019 4th International Conference on Information Systems and Computer Networks (ISCON) Pub Date : 2019-11-01 DOI:10.1109/ISCON47742.2019.9036289

Sai Lahari Velagapudi, Himanshu Gupta

{"title":"HTTP传输中cookie的隐私和安全性","authors":"Sai Lahari Velagapudi, Himanshu Gupta","doi":"10.1109/ISCON47742.2019.9036289","DOIUrl":null,"url":null,"abstract":"Web application and web browsers generally use cookies to capture the data which is being transmitted in the sequent communication that provides continuity and state across HTTP connections. A cookie is a file which contains an end user's information and which sent by website (web server). Cookies allow us to get round the statelessness of the hypertext transfer protocol by storing information at the client-side. Due to highly sensitive nature of information involved in e-commerce, extra steps must be taken to make sure that information is secure. A preparatory form of communication enables us to avoid exploitation of cookies. Securing the cookies provide possible answer to the present drawback. As cookies are transferred in plain text there are high possibilities of that cookies can be manipulated. This paper proposes a new mechanism which helps to encrypt the cookies and protect them from possible threats.","PeriodicalId":124412,"journal":{"name":"2019 4th International Conference on Information Systems and Computer Networks (ISCON)","volume":"25 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"Privacy, Security Of Cookies In HTTP Transmission\",\"authors\":\"Sai Lahari Velagapudi, Himanshu Gupta\",\"doi\":\"10.1109/ISCON47742.2019.9036289\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Web application and web browsers generally use cookies to capture the data which is being transmitted in the sequent communication that provides continuity and state across HTTP connections. A cookie is a file which contains an end user's information and which sent by website (web server). Cookies allow us to get round the statelessness of the hypertext transfer protocol by storing information at the client-side. Due to highly sensitive nature of information involved in e-commerce, extra steps must be taken to make sure that information is secure. A preparatory form of communication enables us to avoid exploitation of cookies. Securing the cookies provide possible answer to the present drawback. As cookies are transferred in plain text there are high possibilities of that cookies can be manipulated. This paper proposes a new mechanism which helps to encrypt the cookies and protect them from possible threats.\",\"PeriodicalId\":124412,\"journal\":{\"name\":\"2019 4th International Conference on Information Systems and Computer Networks (ISCON)\",\"volume\":\"25 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2019-11-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2019 4th International Conference on Information Systems and Computer Networks (ISCON)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ISCON47742.2019.9036289\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2019 4th International Conference on Information Systems and Computer Networks (ISCON)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ISCON47742.2019.9036289","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

摘要

Web应用程序和Web浏览器通常使用cookie来捕获在后续通信中传输的数据，从而提供跨HTTP连接的连续性和状态。cookie是包含最终用户信息的文件，由网站(web服务器)发送。通过在客户端存储信息，cookie允许我们绕过超文本传输协议的无状态性。由于电子商务所涉及的信息高度敏感，必须采取额外措施确保信息的安全。通信的预备形式使我们能够避免利用cookie。保护cookie为目前的缺陷提供了可能的答案。由于cookie以纯文本形式传输，因此cookie被操纵的可能性很高。本文提出了一种新的机制，可以对cookie进行加密，保护它们免受可能的威胁。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Privacy, Security Of Cookies In HTTP Transmission

Web application and web browsers generally use cookies to capture the data which is being transmitted in the sequent communication that provides continuity and state across HTTP connections. A cookie is a file which contains an end user's information and which sent by website (web server). Cookies allow us to get round the statelessness of the hypertext transfer protocol by storing information at the client-side. Due to highly sensitive nature of information involved in e-commerce, extra steps must be taken to make sure that information is secure. A preparatory form of communication enables us to avoid exploitation of cookies. Securing the cookies provide possible answer to the present drawback. As cookies are transferred in plain text there are high possibilities of that cookies can be manipulated. This paper proposes a new mechanism which helps to encrypt the cookies and protect them from possible threats.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2019 4th International Conference on Information Systems and Computer Networks (ISCON)

自引率

0.00%

发文量