Title :
Designing secure session based on reverse proxy
Author :
Wen-Guang Long ; Jian-Ping Li
Author_Institution :
Modern Educational Technology Center, Neijiang Normal University, 641112, China
Abstract :
Reverse proxy employs cookie as its ticket, so it can easily handle the user identification of enterprise. This paper discusses how to revise the transmitting cookie value of Reverse proxy and adjust it to the communication between background server and client entry, in order to maintain the effective cookie session between the client and the server. The paper analyzes the reason for the cookie is easy to attack, and works out a scheme of relaying the secure session, which covers the defect in protecting cookie.
Keywords :
authorisation; client-server systems; computer network security; organisational aspects; text analysis; background server-client entry communication; cookie value transmission; enterprise user identification; reverse proxy; secure cookie session design; Abstracts; Cryptography; Linux; Cookie; SSO; reverse proxy; session;
Conference_Titel :
Wavelet Active Media Technology and Information Processing (ICWAMTIP), 2012 International Conference on
Conference_Location :
Chengdu
Print_ISBN :
978-1-4673-1684-2
DOI :
10.1109/ICWAMTIP.2012.6413498
