Cache cookies for browser authentication

Citations Over TimeTop 10% of 2006 papers

Abstract

Like conventional cookies, cache cookies are data objects that servers store in Web browsers. Cache cookies, however, are unintentional byproducts of protocol design for browser caches. They do not enjoy any explicit interface support or security policies. In this paper, we show that despite limitations, cache cookies can play a useful role in the identification and authentication of users. Many users today block conventional cookies in their browsers as a privacy measure. The cache-cookie tools we propose can help restore lost usability and convenience to such users while maintaining good privacy. As we show, our techniques can also help combat online security threats such as phishing and pharming that ordinary cookies cannot. The ideas we introduce for cache-cookie management can strengthen ordinary cookies as well. The full version of this paper may be referenced at www.ravenwhite.com.

Related Papers

• → Inside a phisher's mind: Understanding the anti-phishing ecosystem through phishing kit analysis(2018)110 cited
• → Towards the Detection of Phishing Attacks(2020)34 cited
• → A novel Phishing classification based on URL features(2011)35 cited
• → Analysis of phishing attacks against students(2016)14 cited
• → Investigation of Phishing Attacks and Means to Utilize Anti Phishing Techniques(2019)2 cited