摘要
Cookies是由Web服务器生成并存贮于用户计算机硬盘内的有用信息。Cookies往往含有重要的用户鉴别信息和用户资料,因此确保Cookies安全显得十分重要。本文首先分析了使用可能给用户造成的安全威胁,提出了抵御这些安全威胁需要实现的安全需求。在此基础上,提出了一种基于公钥证书的安全实现方案。
Cookies are useful information generated by a Web server to be stored in user' s machine. The information in cookies can include vital authentication information and user personal details, so it is important to ensure the cookies are secure. In this article, security threats that cookies can pose to a user are firstly identified and analyzed, as are the security requirements. A new secure cookies scheme basing on the public key certificate is proposed finally.
出处
《微计算机信息》
北大核心
2006年第07X期136-138,172,共4页
Control & Automation
基金
湖北省省级教学研究项目(编号:20040162)
关键词
安全
公钥证书
安全需求
cookies security,public key certificate,security requirement.