Delegate: A Proxy Based Architecture for Secure Website Access from an Untrusted Machine

Delegate: A Proxy Based Architecture for Secure Website Access from an Untrusted Machine

Performing sensitive online transactions using computers found in cybercafes and public libraries is risky. The untrusted nature of these machines creates a target rich environment. A simple keystroke logger, a common pay load of many viruses, records and transmits the secret information (e.g., pass...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Jammalamadaka, R.C., van der Horst, T.W., Mehrotra, S., Seamons, K.E., Venkasubramanian, N.
Format: Tagungsbericht
Sprache:eng
Schlagworte:
Cellular phones
Computer architecture
Computer networks
Computer security
Information security
Internet
Libraries
Permission
Service oriented architecture
Web server
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Performing sensitive online transactions using computers found in cybercafes and public libraries is risky. The untrusted nature of these machines creates a target rich environment. A simple keystroke logger, a common pay load of many viruses, records and transmits the secret information (e.g., passwords, credit card numbers, PIN numbers) entered into these machines. In addition, sophisticated malware can hijack a user's authenticated session to perform unauthorized transactions masquerading as the user. This paper presents Delegate, a proxy-based architecture that enables a user to access Web sites without disclosing personal information to untrusted machines. Delegate enforces rules at the proxy to detect and prevent session hijacking. This architecture leverages users' trusted mobile devices, e.g., cell phones, and requires no modification to Web servers or the untrusted machines. Delegate is designed to provide a balance between security and usability
ISSN:1063-9527
2576-9103
DOI:10.1109/ACSAC.2006.23