Browse Prior Art Database

Secure Web Authentication against Deceiving URLs and Compromised Root Certificate Authorities

IP.com Disclosure Number: IPCOM000244917D
Publication Date: 2016-Jan-29
Document File: 8 page(s) / 529K

Publishing Venue

The IP.com Prior Art Database

Related People

Inventors:
Yuhui Wen

Abstract

This publication proposes a way to perform web authentication securely when under attack from deceiving URLs or compromised root or subordinate certificate authorities. The solution uses an approach similar to Diffie-Hellman, but eliminating the possibility of the man-in-the-middle attack. The solution further verifies the server certificate chain owned by the server and the one seen by the user to further eliminate the attacks.