Show simple item record

Supplemental Authentication via Internet Fingerprinting

dc.contributor.advisor Yang, Xiaowei
dc.contributor.author Tate, Ryan
dc.date.accessioned 2011-05-20T19:13:11Z
dc.date.available 2011-05-20T19:13:11Z
dc.date.issued 2011
dc.identifier.uri https://hdl.handle.net/10161/3778
dc.description.abstract <p>Internet websites are a regular medium for exchanging sensitive information such as online banking. The security of this information is paramount. Today, one facet of this security - authenticating a website to its users - depends on the trust of a third party (i.e., a certificate authority). However, web browsers currently trust many certificate authorities from around the world. Some of them may be compromised or untrustworthy. This work explores an authentication scheme that does not require trust but instead uses unexploited network characteristics of a website to authenticate the website to users. Our preliminary evaluation shows that this scheme can reject all of over 200,000 verified online phishing website visits while recognizing more than 99% of the 7,000 legitimate websites over the course of a week. Results suggest that network characteristics can provide a supplemental website authentication scheme. It has no noticeable overhead or network footprint and is independent of any third party trust.</p>
dc.subject Computer Science
dc.subject Authentication
dc.subject Fingerprint
dc.subject Profile
dc.title Supplemental Authentication via Internet Fingerprinting
dc.type Master's thesis
dc.department Computer Science


Files in this item

Thumbnail

This item appears in the following Collection(s)

Show simple item record