Auflistung nach Autor:in "Braun, Bastian"
1 - 2 von 2
Treffer pro Seite
Sortieroptionen
- KonferenzbeitragAuthenticity: The missing link in the social semantic web(INFORMATIK 2008. Beherrschbare Systeme - dank Informatik. Band 2, 2008) Braun, Bastian; C. Pöhls, HenrichEspecially data on social network services (SNS) is linked to online personas. Our analysis has shown that no reliably solution for origin authentication is in widespread use. We will show the risk and threats resulting from this gap and analyse and contrast several approaches from the live web and research papers.
- KonferenzbeitragSession fixation – the forgotten vulnerability?(Sicherheit 2010. Sicherheit, Schutz und Zuverlässigkeit, 2010) Schrank, Michael; Braun, Bastian; Johns, Martin; Posegga, JoachimThe term 'Session Fixation vulnerability' subsumes issues in Web applications that under certain circumstances enable the adversary to perform a session hijacking attack through controlling the victim's session identifier value. We explore this vulnerability pattern. First, we give an analysis of the root causes and document existing attack vectors. Then we take steps to assess the current attack surface of Session Fixation. Finally, we present a transparent server-side method for mitigating vulnerabilities.