An effective defense system against cross-site request forgery attacks

摘要：

This paper introduce an effective defense system against cross-site request forgery attacks. Being different from the traditional defense systems, this system focuses on the users browser. Because CSRF is generated by executing malicious code of the users browser. and in this way the system can identify and block the CSRF attacks effectively.

关键词： CSRF attacks Session baased C/S architecture

作者: Yang Min Zhu Dingju Xu Hexin Chen Huijuan

作者单位: Shenzhen Institutes of Advanced Technology, Chines Academy of Science, Shenzhen,China School of Soft Shenzhen Institutes of Advanced Technology, Chinese Academy of Science Shenzhen,China School of Software, Sichuan University ChengduChina

会议类型: 国际会议

会议名称: The 2011 International Workshop on Internet of Things Technology and Innovative Application Design(2011年国际物联网技术与创新应用设计研讨会IOT Workshop 2011)

会议地点: 北京

会议语种:英文

页码: 615-618

在线出版日期: 2011-08-24（万方平台首次上网日期，不代表论文的发表时间）

会议专题

An effective defense system against cross-site request forgery attacks