Improved client authentication using session authentication in the internet

Jae W. Lee, Doo Kwon Baik

Research output: Contribution to journalArticle


It is general process of client authentication for a user to gain authority by the user's ID and password. But using client's password is not always secure because of various security attacks of many opponents. In this paper, we propose an improved client authentication adding session authentication process to current systems based on user's ID and password. Before a client requests information processing to web application servers, the user acquire session password from authentication server. The session authentication procedure makes our systems secure during transaction processing by using duplicated password system. And using our proposed session authentication, we can detect intrusion during unauthorized client's transaction because we can know immediately using a stored session authentication password when a hacker attacks our network or computer systems.

Original languageEnglish
Pages (from-to)650-655
Number of pages6
JournalLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Publication statusPublished - 2003 Dec 1


ASJC Scopus subject areas

  • Biochemistry, Genetics and Molecular Biology(all)
  • Computer Science(all)
  • Theoretical Computer Science

Cite this