文件名称:4
-
所属分类:
- 标签属性:
- 上传时间:2012-11-16
-
文件大小:2.62mb
-
已下载:0次
-
提 供 者:
-
相关连接:无下载说明:别用迅雷下载,失败请重下,重下不扣分!
介绍说明--下载内容来自于网络,使用问题请自行百度
Keylogging and phishing attacks can extract user identity
and sensitive account information for unauthorized access to users’ financial
accounts. Most existing or proposed solutions are vulnerable to
session hijacking attacks. We propose a simple approach to counter these
attacks, which cryptographically separates a user’s long-term secret input
from (typically untrusted) client PCs a client PC performs most computations
but has access only to temporary secrets. The user’s long-term
secret (typically short and low-entropy) is input through an independent
personal trusted device such as a cellphone.-Keylogging and phishing attacks can extract user identity
and sensitive account information for unauthorized access to users’ financial
accounts. Most existing or proposed solutions are vulnerable to
session hijacking attacks. We propose a simple approach to counter these
attacks, which cryptographically separates a user’s long-term secret input
from (typically untrusted) client PCs a client PC performs most computations
but has access only to temporary secrets. The user’s long-term
secret (typically short and low-entropy) is input through an independent
personal trusted device such as a cellphone.
and sensitive account information for unauthorized access to users’ financial
accounts. Most existing or proposed solutions are vulnerable to
session hijacking attacks. We propose a simple approach to counter these
attacks, which cryptographically separates a user’s long-term secret input
from (typically untrusted) client PCs a client PC performs most computations
but has access only to temporary secrets. The user’s long-term
secret (typically short and low-entropy) is input through an independent
personal trusted device such as a cellphone.-Keylogging and phishing attacks can extract user identity
and sensitive account information for unauthorized access to users’ financial
accounts. Most existing or proposed solutions are vulnerable to
session hijacking attacks. We propose a simple approach to counter these
attacks, which cryptographically separates a user’s long-term secret input
from (typically untrusted) client PCs a client PC performs most computations
but has access only to temporary secrets. The user’s long-term
secret (typically short and low-entropy) is input through an independent
personal trusted device such as a cellphone.
相关搜索: phishing
(系统自动生成,下载前可以参看下载内容)
下载文件列表
(good)Using a Personal Device to Strengthen Password Authentication from an Untrusted Computer.pdf
1999-2046 搜珍网 All Rights Reserved.
本站作为网络服务提供者,仅为网络服务对象提供信息存储空间,仅对用户上载内容的表现方式做保护处理,对上载内容本身不做任何修改或编辑。