Detection of session hijacking
dc.contributor.author | Louis, Jerry | en |
dc.date.accessioned | 2012-02-21T10:50:34Z | |
dc.date.available | 2012-02-21T10:50:34Z | |
dc.date.issued | 2011-01 | |
dc.identifier.uri | http://hdl.handle.net/10547/211810 | |
dc.description | A Thesis submitted at the University of Bedfordshire In partial fulfilment for the degree of Masters of Science In Computer Security and Forensics | en |
dc.description.abstract | In today‟s world the computer networks have become vulnerable to numerous types of attacks. Either it is wireless network or wired network, one of the most common or effective attacks up-to-date are man-in-the-middle attack, within which session hijacking has been the most attempted attack. The success rate of a session hijacking attack is significantly higher when compared to other attacks. This paper analysis the underlying problem in the detecting strategy and provides a customized solution to detect session hijacking efficiently. This thesis proposes a dual strategy towards developing a defensive mechanism against the session hijacking attempts, the two strategies are IN-Network strategy and OUT-Network Strategy. The implementation to test the above mentioned strategies are carefully designed in order to get the optimum results. The implementation is tested on the user-end, attacker-end and finally on the server end, also this testing of the proposal is performed on two platforms, Windows Operating system – Windows 7 and Linux Operating System – BackTrack. The performance in each of the operating system and the network strategies are carefully iterated to discuss the performance of each of the parameters in its host operating system. The results finally show that the defensive methodology is successfully implemented on both the network strategies. | |
dc.language.iso | en | en |
dc.publisher | University of Bedfordshire | en |
dc.subject | G420 Networks and Communications | en |
dc.subject | session hijacking | en |
dc.subject | computer security | en |
dc.title | Detection of session hijacking | en |
dc.type | Thesis or dissertation | en |
html.description.abstract | In today‟s world the computer networks have become vulnerable to numerous types of attacks. Either it is wireless network or wired network, one of the most common or effective attacks up-to-date are man-in-the-middle attack, within which session hijacking has been the most attempted attack. The success rate of a session hijacking attack is significantly higher when compared to other attacks. This paper analysis the underlying problem in the detecting strategy and provides a customized solution to detect session hijacking efficiently. This thesis proposes a dual strategy towards developing a defensive mechanism against the session hijacking attempts, the two strategies are IN-Network strategy and OUT-Network Strategy. The implementation to test the above mentioned strategies are carefully designed in order to get the optimum results. The implementation is tested on the user-end, attacker-end and finally on the server end, also this testing of the proposal is performed on two platforms, Windows Operating system – Windows 7 and Linux Operating System – BackTrack. The performance in each of the operating system and the network strategies are carefully iterated to discuss the performance of each of the parameters in its host operating system. The results finally show that the defensive methodology is successfully implemented on both the network strategies. |