Assessment of Secure OpenID-Based DAAA Protocol for Avoiding Session Hijacking in Web Applications

المؤلفون المشاركون

Bilal, Muhammad
Asif, Muhammad
Bashir, Abid

المصدر

Security and Communication Networks

العدد

المجلد 2018، العدد 2018 (31 ديسمبر/كانون الأول 2018)، ص ص. 1-10، 10ص.

الناشر

Hindawi Publishing Corporation

تاريخ النشر

2018-11-01

دولة النشر

مصر

عدد الصفحات

10

التخصصات الرئيسية

تكنولوجيا المعلومات وعلم الحاسوب

الملخص EN

It is increasingly difficult to manage the user identities (IDs) of rapidly developing and numerous types of online web-based applications in the present era.

An innovative ID management system is required for managing the user IDs.

The OpenID lightweight protocol is a better solution to manage the user IDs.

In an OpenID communication environment, OpenID URL is not secured in a session hijacking situation because in other existing OpenID communication methods such double factor authentication has more chances of valid user session hijacked.

The proposed communication protocol secures the OpenID URL with the help of additional innovative parameters such as Special Alphanumeric String (SAS) and Special Security PIN (SSP).

The anticipated triple authentication protocol authenticated client unique OpenID URL at OpenID Provider (OP) side once and SAS and SSP field at Relying Party (RP) side.

The anticipated protocol provides unique Single-Sign-On (SSO) services to OpenID users.

The experimental website is tested by experts of web developers for avoiding session hijacking situation in the presence of hackers.

The findings demonstrated that Dense Authentication Authorization and Accounting (DAAA) protocol minimizes the risk of a session hijacking in OpenID communication environment.

نمط استشهاد جمعية علماء النفس الأمريكية (APA)

Bilal, Muhammad& Asif, Muhammad& Bashir, Abid. 2018. Assessment of Secure OpenID-Based DAAA Protocol for Avoiding Session Hijacking in Web Applications. Security and Communication Networks،Vol. 2018, no. 2018, pp.1-10.
https://search.emarefa.net/detail/BIM-1214289

نمط استشهاد الجمعية الأمريكية للغات الحديثة (MLA)

Bilal, Muhammad…[et al.]. Assessment of Secure OpenID-Based DAAA Protocol for Avoiding Session Hijacking in Web Applications. Security and Communication Networks No. 2018 (2018), pp.1-10.
https://search.emarefa.net/detail/BIM-1214289

نمط استشهاد الجمعية الطبية الأمريكية (AMA)

Bilal, Muhammad& Asif, Muhammad& Bashir, Abid. Assessment of Secure OpenID-Based DAAA Protocol for Avoiding Session Hijacking in Web Applications. Security and Communication Networks. 2018. Vol. 2018, no. 2018, pp.1-10.
https://search.emarefa.net/detail/BIM-1214289

نوع البيانات

مقالات

لغة النص

الإنجليزية

الملاحظات

Includes bibliographical references

رقم السجل

BIM-1214289