BetterAuth: Web Authentication Revisited
Author(s): Martin Johns, Sebastian Lekies, Bastian Braun, Benjamin Flesch

Date: December 2012
Publication: 28th Annual Computer Security Applications Conference, ACSAC '12
Page(s): 169 - 178
Publisher: ACM
Source 1: https://www.acsac.org/2012/openconf/modules/request.php?module=oc_program&action=view.php&a=&id=92&type=4
Source 2: http://dx.doi.org/10.1145/2420950.2420977 - Subscription or payment required

Abstract or Summary:
This paper presents "BetterAuth", an authentication protocol for Web applications. Its design is based on the experiences of two decades with the Web. BetterAuth addresses existing attacks on Web authentication, ranging from network attacks to Cross-site Request Forgery up to Phishing. Furthermore, the protocol can be realized completely in standard JavaScript. This allows Web applications an early adoption, even in a situation with limited browser support.



Do you have additional information to contribute regarding this research paper? If so, please email siteupdates@passwordresearch.com with the details.

<-- Back to Authentication Research Paper Index





[Home] [About Us] [News] [Research]

Copyright © 2016 PasswordResearch.com