A case for avoiding security-enhanced HTTP tools to improve security for Web-based applications
Conference
·
OSTI ID:373888
This paper describes some of the general weaknesses of the current popular Hypertext Transmission Protocol (HTTP) security standards and products in an effort to show that these standards are not appealing for many applications. The author will then show how one can treat HTTP browsers and servers as untrusted elements in the network so that one can rely on other mechanisms to achieve better overall security than can be attained through today`s security-enhanced HTTP tools.
- Research Organization:
- Sandia National Labs., Albuquerque, NM (United States)
- Sponsoring Organization:
- USDOE, Washington, DC (United States)
- DOE Contract Number:
- AC04-94AL85000
- OSTI ID:
- 373888
- Report Number(s):
- SAND--96-0687C; CONF-961053--1; ON: DE96006999
- Country of Publication:
- United States
- Language:
- English
Similar Records
Web tools to monitor and debug DAQ hardware
An Integrated Two-Factor Authentication Solution Using Pulse Connect Secure and Apache HTTP Server
Justifying the need for forensically ready protocols: A case study of identifying malicious web servers using client honeypots
Conference
·
Wed Jun 04 00:00:00 EDT 2003
·
OSTI ID:811448
An Integrated Two-Factor Authentication Solution Using Pulse Connect Secure and Apache HTTP Server
Technical Report
·
Tue Dec 31 23:00:00 EST 2019
·
OSTI ID:1649375
Justifying the need for forensically ready protocols: A case study of identifying malicious web servers using client honeypots
Conference
·
Wed Jan 02 23:00:00 EST 2008
·
OSTI ID:983444