|
|||||
|
|
| ASP平台的Cookie会话攻击及防范措施 | |
| 引用本文: | 王凤利,刘兴纲,许唯玮. ASP平台的Cookie会话攻击及防范措施[J]. 河北北方学院学报(自然科学版), 2011, 27(3): 52-55 |
| 作者姓名: | 王凤利 刘兴纲 许唯玮 |
| 作者单位: | 1. 河北北方学院信息科学与工程学院,河北张家口 2. 张家口职业技术学院,河北张家口 3. 张家口市电化教育馆,河北张家口 |
| 摘 要: | Cookie是Web服务器保存在用户浏览器上的文本信息.它相当于网站发给某用户进入该网站的身 份的标识.在许可的时间中,用户可以凭着这个身份标识在该网站中行使自已的合法权限.由于Cookie信息 是被保存在客户端的,这就给恶意攻击者提供了窍取通行证的可能.一旦Cookie信息被窍取,攻击者就可以 伪装成该用户,为其他类... |
| 关 键 词: | ASP平台 Cookie会话攻击 网站入侵 网站安全 |
Cookie Session Attack and Preventive Measures Based on ASP Platform |
|
| WANG Feng-li,LIU Xing-gang,XU Wei-wei. Cookie Session Attack and Preventive Measures Based on ASP Platform[J]. JournalofHebeiNorthUniversity(NaturalScienceEdition), 2011, 27(3): 52-55 | |
| Authors: | WANG Feng-li LIU Xing-gang XU Wei-wei |
| Affiliation: | WANG Feng-li1,LIU Xing-gang2,XU Wei-wei3(1.Hebei North University,Zhangjiakou 075000,Hebei,China,2.Zhangjiakou Vocational and Techmical College,3.Zhangjiakou Audio-visual Education Museum,China) |
| Abstract: | Cookie is the web server preservation on the user browser' s text information.It is equal to the identification symbol issued by website to some users to enter this website.In permitted time,the user may exercise the legal authority by reason of this identification.Because the Cookie information is preserved in the client side,it gives the malicious aggressor possibility to steal the permission.Once the Cookie information is taken,the aggressor may camouflage as the user to provide convenience for other typ... |
| Keywords: | ASP platform cookie conversation attack website invasion website security |
| 本文献已被 CNKI 万方数据 等数据库收录! | |