the Express / SPDY / Google / C. John Wiley & sons / Intel / / /
Facility
J. Temple / /
IndustryTerm
web scenarios / authentication protocol / web applications / integrity-protected session management / hand networking / server software / authentication services / average processing time / wifi networks / content inspection systems / web application / Internet Draft / malware detection systems / large networks / thirdparty services / communication protocol / Web context / client-side and server-side processing / attacker tools / secure session management / legacy applications / traffic inspection systems / transaction processing / Internet ssl survey / deployed systems / web sessions / web application developers / shared hosting systems / Internet Technology / image sharing site / cookie-based session management / intermediate network / Web As / session management / web server / deployed web caches / Web Authentication / web caches / Web technologies / technology supporting session management / encrypted key transmission protocol / Web Caching Web caches / /
MusicGroup
Diffie / /
OperatingSystem
Linux Mint / Windows XP / /
Organization
Trustworthy Internet Movement / IWT / European Commission / European Union European Commission Directorate / European Union / /
Person
Frank Piessens / Philippe De Ryck / /
Position
relevant threat model for session management / /
ProgrammingLanguage
EC / JavaScript / /
Technology
authentication protocol / HTTP protocol / HTTP/1.1 protocol / Linux / encrypted key transmission protocol / Internet Technology / SSL / operating systems / Diffie-Hellman key exchange algorithm / cryptography / Web technologies / smartphones / communication protocol / HTTP / Caching / underlying technology / web server / Diffie-Hellman protocol / /
1 Eradicating Bearer Tokens for Session Management Philippe De Ryck, Lieven Desmet, Frank Piessens, Wouter Joosen iMinds-DistriNet, KU Leuven, 3001 Leuven, Belgium {firstname.lastname}@cs.kuleuven.be