{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,7]],"date-time":"2026-02-07T23:28:32Z","timestamp":1770506912201,"version":"3.49.0"},"publisher-location":"Cham","reference-count":12,"publisher":"Springer International Publishing","isbn-type":[{"value":"9783319095806","type":"print"},{"value":"9783319095813","type":"electronic"}],"license":[{"start":{"date-parts":[[2014,1,1]],"date-time":"2014-01-01T00:00:00Z","timestamp":1388534400000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2014]]},"DOI":"10.1007\/978-3-319-09581-3_23","type":"book-chapter","created":{"date-parts":[[2014,8,2]],"date-time":"2014-08-02T11:20:14Z","timestamp":1406978414000},"page":"319-323","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":3,"title":["Short: A Lightweight and Secure Session Management Protocol"],"prefix":"10.1007","author":[{"given":"Yassine","family":"Sadqi","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ahmed","family":"Asimi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Younes","family":"Asimi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2014,8,3]]},"reference":[{"key":"23_CR1","unstructured":"Open Web Application Security Project: TOP 10 2013. https:\/\/www.owasp.org\/, https:\/\/www.owasp.org\/index.php\/Top_10_2013"},{"key":"23_CR2","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/2220352.2220353","volume":"12","author":"I Dacosta","year":"2012","unstructured":"Dacosta, I., Chakradeo, S., Ahamad, M., Traynor, P.: One-time cookies: preventing session hijacking attacks with stateless authentication tokens. ACM Trans. Internet Technol. TOIT 12, 1 (2012)","journal-title":"ACM Trans. Internet Technol. TOIT"},{"key":"23_CR3","volume-title":"The Web Application Hacker\u2019s Handbook Finding and Exploiting Security Flaws","author":"D Stuttard","year":"2011","unstructured":"Stuttard, D., Pinto, M.: The Web Application Hacker\u2019s Handbook Finding and Exploiting Security Flaws. Wiley, Indianapolis (2011)"},{"key":"23_CR4","doi-asserted-by":"publisher","first-page":"1723","DOI":"10.1016\/j.comnet.2012.01.013","volume":"56","author":"AX Liu","year":"2012","unstructured":"Liu, A.X., Kovacs, J.M., Gouda, M.G.: A secure cookie scheme. Comput. Netw. 56, 1723\u20131730 (2012)","journal-title":"Comput. Netw."},{"key":"23_CR5","unstructured":"Dietz, M., Czeskis, A., Balfanz, D., Wallach, D.S.: Origin-bound certificates: a fresh approach to strong client authentication for the web. In: Proceedings of 21st USENIX Security Symposium, 2012 (2012)"},{"key":"23_CR6","doi-asserted-by":"publisher","first-page":"55","DOI":"10.1080\/19393555.2013.783952","volume":"22","author":"S Wedman","year":"2013","unstructured":"Wedman, S., Tetmeyer, A., Saiedian, H.: An analytical study of web application session management mechanisms and HTTP session hijacking attacks. Inf. Secur. J. Glob. Perspect. 22, 55\u201367 (2013)","journal-title":"Inf. Secur. J. Glob. Perspect."},{"key":"23_CR7","unstructured":"Fu, K., Sit, E., Smith, K., Feamster, N.: Dos and Don\u2019ts of client authentication on the web. In: Proceedings of the 10th USENIX Security Symposium, pp. 251\u2013268 (2001)"},{"key":"23_CR8","doi-asserted-by":"publisher","first-page":"36","DOI":"10.1109\/4236.865085","volume":"4","author":"JS Park","year":"2000","unstructured":"Park, J.S., Sandhu, R.: Secure cookies on the Web. Internet Comput. IEEE. 4, 36\u201344 (2000)","journal-title":"Internet Comput. IEEE."},{"key":"23_CR9","unstructured":"Xu, D., Lu, C., Dos Santos, A.: Protecting web usage of credit cards using one-time pad cookie encryption. In: Proceedings of the 18th Annual Computer Security Applications Conference, 2002 , pp. 51\u201358 (2002)"},{"key":"23_CR10","doi-asserted-by":"crossref","unstructured":"Adida, B.: Sessionlock: securing web sessions against eavesdropping. In: Proceedings of the 17th International Conference on World Wide Web, pp. 517\u2013524 (2008)","DOI":"10.1145\/1367497.1367568"},{"key":"23_CR11","unstructured":"Bonneau, J., Preibusch, S.: The password thicket: technical and market failures in human authentication on the web. In: Proceedings of the 9th Workshop on the Economics of Information Security (2010)"},{"key":"23_CR12","unstructured":"Sandler, D., Wallach, D.S.: <input type=\u201cpassword\u201d> must die. In: Presented at the Web 2.0 Security & Privacy (2008)"}],"container-title":["Lecture Notes in Computer Science","Networked Systems"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-09581-3_23","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,2,20]],"date-time":"2023-02-20T09:49:07Z","timestamp":1676886547000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-319-09581-3_23"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2014]]},"ISBN":["9783319095806","9783319095813"],"references-count":12,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-09581-3_23","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2014]]},"assertion":[{"value":"3 August 2014","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}}]}}