Improved client authentication using session authentication in the internet

Jae W. Lee, Doo Kwon Baik

Research output: Contribution to journalArticle

Abstract

It is general process of client authentication for a user to gain authority by the user's ID and password. But using client's password is not always secure because of various security attacks of many opponents. In this paper, we propose an improved client authentication adding session authentication process to current systems based on user's ID and password. Before a client requests information processing to web application servers, the user acquire session password from authentication server. The session authentication procedure makes our systems secure during transaction processing by using duplicated password system. And using our proposed session authentication, we can detect intrusion during unauthorized client's transaction because we can know immediately using a stored session authentication password when a hacker attacks our network or computer systems.

Original languageEnglish
Pages (from-to)650-655
Number of pages6
JournalLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume2713
Publication statusPublished - 2003 Dec 1

Fingerprint

Computer Systems
Automatic Data Processing
Internet
Password
Authentication
Server
Attack
Password Authentication
Servers
Transaction Processing
Web Application
Information Processing
Transactions
Immediately
Computer systems
Processing

ASJC Scopus subject areas

  • Biochemistry, Genetics and Molecular Biology(all)
  • Computer Science(all)
  • Theoretical Computer Science

Cite this

@article{7aa536457cf54ba791091db7220b1600,
title = "Improved client authentication using session authentication in the internet",
abstract = "It is general process of client authentication for a user to gain authority by the user's ID and password. But using client's password is not always secure because of various security attacks of many opponents. In this paper, we propose an improved client authentication adding session authentication process to current systems based on user's ID and password. Before a client requests information processing to web application servers, the user acquire session password from authentication server. The session authentication procedure makes our systems secure during transaction processing by using duplicated password system. And using our proposed session authentication, we can detect intrusion during unauthorized client's transaction because we can know immediately using a stored session authentication password when a hacker attacks our network or computer systems.",
author = "Lee, {Jae W.} and Baik, {Doo Kwon}",
year = "2003",
month = "12",
day = "1",
language = "English",
volume = "2713",
pages = "650--655",
journal = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
issn = "0302-9743",
publisher = "Springer Verlag",

}

TY - JOUR

T1 - Improved client authentication using session authentication in the internet

AU - Lee, Jae W.

AU - Baik, Doo Kwon

PY - 2003/12/1

Y1 - 2003/12/1

N2 - It is general process of client authentication for a user to gain authority by the user's ID and password. But using client's password is not always secure because of various security attacks of many opponents. In this paper, we propose an improved client authentication adding session authentication process to current systems based on user's ID and password. Before a client requests information processing to web application servers, the user acquire session password from authentication server. The session authentication procedure makes our systems secure during transaction processing by using duplicated password system. And using our proposed session authentication, we can detect intrusion during unauthorized client's transaction because we can know immediately using a stored session authentication password when a hacker attacks our network or computer systems.

AB - It is general process of client authentication for a user to gain authority by the user's ID and password. But using client's password is not always secure because of various security attacks of many opponents. In this paper, we propose an improved client authentication adding session authentication process to current systems based on user's ID and password. Before a client requests information processing to web application servers, the user acquire session password from authentication server. The session authentication procedure makes our systems secure during transaction processing by using duplicated password system. And using our proposed session authentication, we can detect intrusion during unauthorized client's transaction because we can know immediately using a stored session authentication password when a hacker attacks our network or computer systems.

UR - http://www.scopus.com/inward/record.url?scp=35248840148&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=35248840148&partnerID=8YFLogxK

M3 - Article

AN - SCOPUS:35248840148

VL - 2713

SP - 650

EP - 655

JO - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

JF - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SN - 0302-9743

ER -