A Methodology for Web Cache Deception Vulnerability Discovery

Filippo Berto; Francesco Minetti; Claudio Ardagna; Marco Anisetti

Research.Publish.Connect.

*Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Country:
Subject:

Advanced Search Affiliations Search

If you're looking for an exact phrase use quotation marks on text fields.

Proceedings

Proceedings Search *Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

Papers

Papers Search *Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

Authors

Authors Search *Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

Advanced Search

Paper

A Methodology for Web Cache Deception Vulnerability Discovery

Topics: Privacy, Security and Trust; Services Security and Reliability

In Proceedings of the 14th International Conference on Cloud Computing and Services Science CLOSER - Volume 1, 231-238, 2024 , Angers, France

Authors: Filippo Berto ; Francesco Minetti ; Claudio Ardagna and Marco Anisetti

Affiliation: Department of Computer Science, University of Milan, Milan, Italy

Keyword(s): Web Cache Deception, Web Cache, Web Security.

Abstract: In recent years, the use of caching techniques in web applications has increased significantly, in line with their expanding user base. The logic of web caches is closely tied to the application logic, and misconfigurations can lead to security risks, including the unauthorized access of private information and session hijacking. In this study, we examine Web Cache Deception as a technique for attacking web applications. We develop a solution for discovering vulnerabilities that expands upon and encompasses prior research in the field. We conducted an experimental evaluation of the attack’s efficacy against real-world targets, and present a new attack vector via web-client-based email services.

CC BY-NC-ND 4.0

Guest: Register as new SciTePress user now for free.

SciTePress user: please login.

My Papers

You are not signed in, therefore limits apply to your IP address 3.21.246.99

In the current month:

Recent papers: 100 available of 100 total

2⁺ years older papers: 200 available of 200 total

Paper citation in several formats:

Berto, F.; Minetti, F.; Ardagna, C. and Anisetti, M. (2024). A Methodology for Web Cache Deception Vulnerability Discovery. In Proceedings of the 14th International Conference on Cloud Computing and Services Science - CLOSER; ISBN 978-989-758-701-6; ISSN 2184-5042, SciTePress, pages 231-238. DOI: 10.5220/0012692000003711

@conference{closer24,
author={Filippo Berto. and Francesco Minetti. and Claudio Ardagna. and Marco Anisetti.},
title={A Methodology for Web Cache Deception Vulnerability Discovery},
booktitle={Proceedings of the 14th International Conference on Cloud Computing and Services Science - CLOSER},
year={2024},
pages={231-238},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0012692000003711},
isbn={978-989-758-701-6},
issn={2184-5042},
}

TY - CONF

JO - Proceedings of the 14th International Conference on Cloud Computing and Services Science - CLOSER
TI - A Methodology for Web Cache Deception Vulnerability Discovery
SN - 978-989-758-701-6
IS - 2184-5042
AU - Berto, F.
AU - Minetti, F.
AU - Ardagna, C.
AU - Anisetti, M.
PY - 2024
SP - 231
EP - 238
DO - 10.5220/0012692000003711
PB - SciTePress