Web-Proxy-Based Authentication and Authorization Mechanism Against Client-Based HTTP Attacks

Mohd. Shafi Pathan; Mrunali Bukkawar

首页> 外文期刊>International journal of synthetic emotions >Web-Proxy-Based Authentication and Authorization Mechanism Against Client-Based HTTP Attacks

【24h】

Web-Proxy-Based Authentication and Authorization Mechanism Against Client-Based HTTP Attacks

机译：基于Web代理的身份验证和授权机制可抵抗基于客户端的HTTP攻击

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

There has been a huge development in how to read a data from sensor device such as infrared (IR) device, temperature device, etc. Sensor data collection has wide issues of information security. Information security is also the current topic of discussion due to its use in application in various fields. There are number of users having different user roles with smart devices. These personnel use devices for various purposes like access the information from various devices such as wireless sensors so that a secure and efficient mutual authentication and authorization scheme is used in the smart grid network to prevent various insider and outsider attacks on information or data. Therefore, proposed work design novel approach to overcome that attack, malicious user and device by authentication and authorization. The technique of authenticate authenticates each user role dynamically using a signature based access control and verifies the identity of user together with the device. Access control mechanism not only prevents unauthorized access but also prevent misuse of data. Existing system generates shared key for each session but it generates huge overhead and not suitable for the real-world applications so in proposed system we used public key cryptography to reduce the overhead.

机译：如何从诸如红外（IR）设备，温度设备等传感器设备读取数据已经有了巨大的发展。传感器数据收集具有广泛的信息安全性问题。由于信息安全在各个领域中的应用，因此信息安全也是当前讨论的主题。许多用户在智能设备上具有不同的用户角色。这些人员将设备用于各种目的，例如从各种设备（例如无线传感器）访问信息，以便在智能电网网络中使用安全有效的相互身份验证和授权方案，以防止对信息或数据进行各种内部和外部攻击。因此，提出了一种工作设计新颖的方法，以通过身份验证和授权来克服这种攻击，恶意用户和设备。验证技术使用基于签名的访问控制来动态验证每个用户角色，并与设备一起验证用户的身份。访问控制机制不仅可以防止未经授权的访问，还可以防止滥用数据。现有的系统为每个会话生成共享密钥，但是它会产生巨大的开销，并且不适合实际应用，因此在提出的系统中，我们使用公共密钥密码术来减少开销。

著录项

来源
《International journal of synthetic emotions》 |2017年第1期|60-72|共13页
作者
Mohd. Shafi Pathan; Mrunali Bukkawar;
展开▼
作者单位

Kashibai Navale College of Engineering, Pune, India;

Department of Computer Engineering, Savitribai Phule Pune University, Maharashtra, India;

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词
Anomaly Detection; Authentication; Authorization; DDoS Attack; SQL Injection;

机译：异常检测;认证;授权;DDoS攻击;SQL注入;

相似文献

外文文献
中文文献
专利

1. HTTPAS: active authentication against HTTPS man-in-the-middle attacks [J] . Peng Zhou, Xiaojing Gu Communications, IET . 2016,第17期

机译：HTTPAS：针对HTTPS中间人攻击的主动身份验证
2. SIMULTANEOUS AUTHENTICATION AND AUTHORIZATION MECHANISMS: FOR A MASSIVELY LARGE MULTIMEDIA BROADCASTING SERVICE [J] . DENG ZHONGLIANG, LIN WENLIANG, LI NING, Electronics world . 2014,第1943期

机译：同时的身份验证和授权机制：针对大型多媒体广播服务
3. Authentication and authorization mechanisms for substation automation in smart grid network [J] . Vaidya B., Makrakis D., Mouftah H.T. Network, IEEE . 2013,第1期

机译：智能电网中变电站自动化的认证授权机制
4. A Closer Look at Authentication and Authorization Mechanisms for Web-based Applications [C] . SHARIL TUMIN, SYLVIA ENCHEVA Recent researches in applied information science . 2012

机译：仔细研究基于Web的应用程序的身份验证和授权机制
5. A novel client-based system for the prevention of management frame attacks on wireless LANs. [D] . Zhang, Yaqing. 2007

机译：一种新颖的基于客户端的系统，用于防止无线局域网上的管理帧攻击。
6. Machine Learning for Authentication and Authorization in IoT: Taxonomy Challenges and Future Research Direction [O] . Kazi Istiaque Ahmed, Mohammad Tahir, Mohamed Hadi Habaebi, 2021

机译：机器学习在IOT中进行身份验证和授权：分类挑战和未来的研究方向
7. Inter-domain Authentication and Authorization Mechanisms for Roaming SIP Users1 [O] . Dorgham Sisalem, Jiri Kuthan 2015

机译：漫游sIp用户的域间认证和授权机制1
8. Using the Domain Name System to Thwart Automated Client-Based Attacks [R] . Taylor, C. R., Shue, C. A. 2011

机译：使用域名系统来阻止基于客户端的自动攻击

Web-Proxy-Based Authentication and Authorization Mechanism Against Client-Based HTTP Attacks

摘要

著录项

相似文献

相关主题

期刊订阅