Secure Internet access to gateway using secure socket layer

Bhatt, D.V.; Schulze, S.; Hancke, Gerhard P.; Horváth, László

doi:10.1109/vecims.2003.1227047

Cited by 5 publications

(4 citation statements)

References 24 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Owing to JS, all possible attacks in JS are feasible in Ajax-based web applications [2] [4][9]. Nowadays, Secure Sockets Layer (SSL) or HTTPS channels are used in most web applications for securing the transmission of data over the internet [10]. These channels actually encrypt all data transmitted over the network.…”

Section: Ajax Working Processmentioning

confidence: 99%

“…These channels actually encrypt all data transmitted over the network. However, some web applications remain vulnerable even after using SSL, because they do not pass the data to SSL, which is why attackers sniff all this confidential information [10]. As a result, many web applications remain vulnerable.…”

Section: Ajax Working Processmentioning

confidence: 99%

“…Usually Ajax displays data in XML, JSON, or plain text starting from this stage [1], [4]. Since developers are not very much aware to implement the secured tunneling protocols like Hyper Text Transfer Protocol Secure (HTTPS), Secure Sockets Layer (SSL), Transport Layer Security (TLS), etc., attackers, working as middleman, are trying to list and intercept all request from server through insecure protocol like Hyper Text Transfer Protocol (HTTP) to manipulate the requests [1], [7], [10]. Finally, web application security is compromised when credentials are intercepted by an unauthenticated guest user [10].…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

A Study of Ajax Template Injection in Web Applications

Noyon¹,

Abid²,

Hassan³

et al. 2018

IJET

View full text Add to dashboard Cite

Cyber-attacks are becoming increasingly frequent, causing a lot of damage. Cyber-attacks have crippled our economic infrastructure both directly and indirectly. Attackers steal our valuable data by compromising web application security loopholes. Developers can prevent cyber-attacks using latest web technologies. Since web technologies are becoming more secure, cyber attackers are getting more incursive to find out the zero day vulnerability of the targeted system to breach the security. Nowadays most damaging attacks are done using zero-day vulnerability. An Ajax template injection is such an attack: An unauthenticated attacker dumps database table credentials by intercepting server response. Owing to the damage caused by an Ajax template injection, it can be counted among the OWASP top ten web application vulnerabilities in the near future. This paper discusses the idea of an Ajax template injection and its impact on Ajaxbased web applications. This paper also provides statistical data about the percentage of Ajax-based web application vulnerabilities in Bangladesh.

show abstract

Section: Ajax Working Processmentioning

confidence: 99%

Section: Ajax Working Processmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

A Study of Ajax Template Injection in Web Applications

Noyon¹,

Abid²,

Hassan³

et al. 2018

IJET

View full text Add to dashboard Cite

show abstract

“…The work [8] proposed a model called secure Internet access to gateway using secure socket that uses secure socket layer (SSL) to provide a secure channel between client and gateway server. A smart card was used for client authentication and encryption/decryption of the data.…”

Section: Literature Surveymentioning

confidence: 99%

Hybrid Security Architecture for Data Communications (Sadc)

Kumar¹,

Aregay²

2018

ijarcs

View full text Add to dashboard Cite

Communication networks and Internet had a tremendous growth in the recent past years. Today most of the government sectors, financial institutions, corporations, military and others exchange huge amount of confidential information by using the Internet Application Layer security is a growing area of concern for developers, designers, quality assurance specialist and programmers. Application security is the prevention of flaws and vulnerability that occur in the design, development, and deployment of applications that run on application layer of TCP/IP Protocol Suite. Although IPv6 both simplifies and improves IPv4, it poses several significant security challenges. First, even though IPSec support is mandatory in IPv6, its use is not. Not using IPSec exposes a network to old IP-related attacks as well as attacks related to IPv6-specific features. A working IPSec infrastructure is also difficult to deploy and manage, further reducing IPSec's use. Some problems that affect IPv4 networks such as application-layer attacks, rogue devices and packet flooding can also affect IPv6 networks. Finally, several other new, unanticipated security problems will arise as the hacking community starts actively targeting IPv6 networks. This paper proposes new security architecture for data communication.

show abstract

Research on Secure E-Payment Protocol

Jiemiao¹

2011

2011 International Conference on Information Management, Innovation Management and Industrial Engineering

View full text Add to dashboard Cite

Secure Internet access to gateway using secure socket layer

Cited by 5 publications

References 24 publications

A Study of Ajax Template Injection in Web Applications

A Study of Ajax Template Injection in Web Applications

Hybrid Security Architecture for Data Communications (Sadc)

Research on Secure E-Payment Protocol

Contact Info

Product

Resources

About