Defense Against Man-in-the-Middle Attack in Client-Server Systems

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by D. N. Serpanos Articles by R. J. Lipton

Sixth IEEE Symposium on Computers and Communications (ISCC'01)

Hammamet, Tunisia

July 03-July 05

ISBN: 0-7695-1177-5

	ASCII Text	x
	D. N. Serpanos, R. J. Lipton, "Defense Against Man-in-the-Middle Attack in Client-Server Systems," Computers and Communications, IEEE Symposium on, pp. 0009, Sixth IEEE Symposium on Computers and Communications (ISCC'01), 2001.

	BibTex	x
	@article{ 10.1109/ISCC.2001.935348, author = {D. N. Serpanos and R. J. Lipton}, title = {Defense Against Man-in-the-Middle Attack in Client-Server Systems}, journal ={Computers and Communications, IEEE Symposium on}, volume = {0}, year = {2001}, isbn = {0-7695-1177-5}, pages = {0009}, doi = {http://doi.ieeecomputersociety.org/10.1109/ISCC.2001.935348}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computers and Communications, IEEE Symposium on TI - Defense Against Man-in-the-Middle Attack in Client-Server Systems SN - 0-7695-1177-5 SP EP A1 - D. N. Serpanos, A1 - R. J. Lipton, PY - 2001 VL - 0 JA - Computers and Communications, IEEE Symposium on ER -

D. N. Serpanos, University of Patras

R. J. Lipton, Telcordia Technologies

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ISCC.2001.935348

Abstract: The deployment of several client-server applications over the Internet and emerging networks requires the establishment of the client's integrity. This is necessary for the protection of copyright of distributed material and, in general, for protection from loss of "sensitive" (secret) information. Clients are vulnerable to powerful man-in-the-middle attacks through viruses, which are undetectable by conventional anti-virus technology. We describe such powerful viruses and show their ability to lead to compromised clients, that cannot protect copyrighted or "sensitive" information. We introduce a methodology based on simple hardware devices, called "spies", which enables servers to establish client integrity, and leads to a successful defense against viruses that use man-in-the-middle attacks.

Citation:

D. N. Serpanos, R. J. Lipton, "Defense Against Man-in-the-Middle Attack in Client-Server Systems," iscc, pp.0009, Sixth IEEE Symposium on Computers and Communications (ISCC'01), 2001

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.