A hierarchical two-tier one-way hash chain protocol for secure internet transactions

Author

Alabrah, Amerah ; Bassiouni, Mostafa

Author_Institution

Dept. of Electr. Eng. & Comput. Sci., Univ. of Central Florida, Orlando, FL, USA

fYear

2012

fDate

3-7 Dec. 2012

Firstpage

868

Lastpage

873

Abstract

One-way hash chains are a popular cryptographic technique used in many security applications. In this paper, we present a two-tier one-way hash chain (TTOHC) protocol to secure cookie-based Internet transactions. The use of cookies as a cheaper alternative to secure Internet sessions is extremely dangerous since session cookies can be easily sniffed out resulting in session hijacking. By utilizing different cryptographic hash functions arranged in two tiers, our hierarchical TTOHC protocol gives significant performance improvement over previously proposed solutions for securing Internet cookies. A detailed Java testbed has been used to evaluate alternative configurations for the hierarchical scheme and investigate the optimal set up of the two tiers. Detailed performance results obtained from this testbed are presented and analyzed.

Keywords

Internet; Java; computer network performance evaluation; computer network security; cryptographic protocols; Java testbed; cryptographic hash functions; cryptographic technique; hierarchical TTOHC protocol; hierarchical two-tier one-way hash chain protocol; performance improvement; secure cookie-based Internet transactions; session hijacking; HTTPS; One-way hash chains; secure Internet transactions; user sessions;

fLanguage

English

Publisher

ieee

Conference_Titel

Global Communications Conference (GLOBECOM), 2012 IEEE

Conference_Location

Anaheim, CA

ISSN

1930-529X

Print_ISBN

978-1-4673-0920-2

Electronic_ISBN

1930-529X

Type

conf

DOI

10.1109/GLOCOM.2012.6503222

Filename

6503222