Network Security: Detailed info on Re: Whitepaper "SESSION RIDING

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Web-App-Sec

[Top] [All Lists]

Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in To day's

from [Florian Weimer] Network Security

[Permanent Link]

Subject:	Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in To day's Web Applications"
Date:	Sat, 08 Jan 2005 00:47:21 +0100

* Jim Weiler:

Couldn't the secret be any unpredictable value that the server can
come up with, like a GUID or the timestamp of the user login, and
not something that uses encryption?


Yes, and a HMAC provides that.  You have to make the value depending
on the web application user (and preferably the time), otherwise users
could attack each other.  Of course, you can also use a decent PRNG to
generate a token, and store it in the user's session object on the
server side.  But this might be more complicated to implement.

A HMAC is not really encryption---but thanks to chaffing and
winnowing, all authentication schemes also permit encryption, albeit
with a significant overhead.

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
RE: Whitepaper "SESSION RIDING - A Widespread Vulnerability in To day's Web Applications", Weiler, Jim Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in To day's Web Applications", Florian Weimer <= Google Hacking and SiteDigger 2.0, Kartik Trivedi Re: Google Hacking and SiteDigger 2.0, GuidoZ

Previous by Date:	Re: How to list all the URLs on a web server, GuidoZ
Next by Date:	Using Google Desktop Search for remote system monitoring, Abe Usher
Previous by Thread:	RE: Whitepaper "SESSION RIDING - A Widespread Vulnerability in To day's Web Applications", Weiler, Jim
Next by Thread:	Google Hacking and SiteDigger 2.0, Kartik Trivedi
Indexes:	[Date] [Thread] [Top] [All Lists]