Evaluation of OpenID-Based Double-Factor Authentication for Preventing Session Hijacking in Web Applications
|
Title | Evaluation of OpenID-Based Double-Factor Authentication for Preventing Session Hijacking in Web Applications |
Authors | |
Abstract | Web users often find it difficult to manage their identities (IDs) due to large number of web applications. An effective and convenient ID management system is needed to handle the problem. OpenID is one of the better solutions to manage this task on heterogeneous web applications due to its lightweight and simple protocol. However, it is quite vulnerable to session hijacking, resulting in identity theft of a particular user. In this paper, we present a modified approach, based on double authentication that minimizes the risk of session hijacking in an OpenID environment. |
Publisher | ACADEMY PUBLISHER |
Date | 2012-11-01 |
Source | Journal of Computers Vol 7, No 11 (2012) |
Rights | Copyright © ACADEMY PUBLISHER - All Rights Reserved.To request permission, please check out URL: http://www.academypublisher.com/copyrightpermission.html. |