11.07.2015 Views

SAP: Session (Fixation) Attacks and Protections - Black Hat

SAP: Session (Fixation) Attacks and Protections - Black Hat

SAP: Session (Fixation) Attacks and Protections - Black Hat

SHOW MORE
SHOW LESS
  • No tags were found...

You also want an ePaper? Increase the reach of your titles

YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.

Conclusions (2)• <strong>Session</strong> attacks can bypass even the mostadvanced authentication mechanisms• <strong>Session</strong> ID is equivalent to…– Password– Passphrase– Digital certificates– Smart cards– Fingerprint– Eye retinaCopyright © 2011 Taddong S.L. www.taddong.com76

Hooray! Your file is uploaded and ready to be published.

Saved successfully!

Ooh no, something went wrong!