Universiti Utara Malaysia
In a client-server environment that deals with multiple clients, there is a need to provide a mechanism on the server to manage the issuance of the client credentials for security authorization. Credentials created using a particular own platform identities and functions as an authentication credentials to authenticate the platform itself in a network communication. However, these credentials can easily be shared, copied and stolen. This will led to an anonymous service sharing and worst to come when the stolen credentials is using for phishing attacks to the original user.