Abstract

Most of the applications we use on a daily basis are distributed systems that are composed of at least one client and server and are exposed to the Internet. This communication is based on an HTTP protocol, which is a stateless protocol. Because of its communication characteristics, developers are forced to implement a series of mechanisms to pursue user privacy, security as well as business features.

Modern social media applications such as Facebook have been using secure tokens as an authentication mechanism. These applications are relying on only one part of the approach, such as token mechanism generation. If the third party system does not consider another aspect of security, the authentication mechanism will fail unless we consider all the aspects in the user authentication process, as shown when Facebook shared private user tokens with unauthorized users. More than 50 million accounts were affected, and another 40 million could be affected as well. This work introduces a secure mechanism to identify the user in an enterprise/web application across all user interactions once the user has logged in. The system to be proposed creates a relationship between the user and the session management for each system. This project aims to show a different perspective based on a user-centered approach, where the approach is based on the user and its user access and not only on an ID/Token mechanism. The research proposes that the session manager mechanism can be more secure as well as the token-based mechanism. The approach integrates Blockchain technology for representing the relationship between the user and a system.

Library of Congress Subject Headings

Computer networks--Security measures; Blockchain (Databases); HTTP (Computer network protocol)--Security measures

Publication Date

4-2019

Document Type

Thesis

Student Type

Graduate

Degree Name

Computer Science (MS)

Department, Program, or Center

Computer Science (GCCIS)

Advisor

Rajendra K Raj

Advisor/Committee Member

Carol Romanowski

Advisor/Committee Member

Sumita Mishra

Additional Files
ARodriguezSosaSupplement.xlsx (43 kB)
Supplement
ARodriguezSosaSupplement1.pptx (3554 kB)
Supplement 1
ARodriguezSosaSupplement2.sol (6 kB)
Supplement 2

Campus

RIT – Main Campus

Plan Codes

COMPSCI-MS

Download

Additional files available below

Share

COinS