To obtain access to full text of journal and articles you must register!
- Article name
- Development of a system for secure authentication and maintaining a user session on a web resource
- Authors
- Sharmaev V. I., , vadidq@ya.ru, Moscow Aviation Institute (National Research University), Moscow, Russia
Sidorin S. Yu., , sarmatsid@yandex.ru, Company "Informzaschita", Moscow, Russia
Zherdev A. A., , misterrio535@gmail.com, Group-IB, Moscow, Russia
- Keywords
- information security / vulnerabilities / cyber-attacks / authentication / authorization / cookies / JWT tokens
- Year
- 2022 Issue 4 Pages 7 - 12
- Code EDN
- JCFPPO
- Code DOI
- 10.52190/2073-2600_2022_4_7
- Abstract
- Using the Burp Suite tool, authors demonstrated the possibility of intercepting a login and a request if it occurs in action. To solve this problem, a method for detecting user authentication and using a session on a web resource is proposed. A detailed description of the safety elements and technologies is given. Nessus and Netsparker vulnerability scanners were used to verify the developed method. The results of this study can be used in the development of tactical and technical means of the organization to create more effective user authentication algorithms, identify vulnerabilities and identify risks.
- Text
- BUY for read the full text of article
- Buy
- 500.00 rub
