Issue No.03 - March (2008 vol.41)
Rolf Oppliger , eSECURITY Technologies
Ralf Hauser , PrivaSphere AG
David Basin , ETH Zurich
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MC.2008.98
Overall, transport layer security with session-aware user authentication offers a promising approach to solving man-in-the-middle attack problems by leveraging the legacy authentication mechanisms and systems that the general public has become accustomed to using.
man-in-the-middle (MITM) attacks, security, user authentication, SSL/TLS protocols
Rolf Oppliger, Ralf Hauser, David Basin, "SSL/TLS Session-Aware User Authentication", Computer, vol.41, no. 3, pp. 59-65, March 2008, doi:10.1109/MC.2008.98