Practical End-to-End Web Content Integrity

Widespread growth of open wireless hotspots has made it easy to carry out man-in-the-middle attacks and impersonate web sites. Although HTTPS can be used to prevent such attacks, its universal adoption is hindered by its performance cost and its inability to leverage caching at intermediate servers (such as CDN servers and caching proxies) while maintaining end-to-end security. To complement HTTPS, the authors revive an old idea from SHTTP, a protocol that offers end-to-end web integrity without confidentiality. They name the protocol HTTPi and give it an efficient design that is easy to deploy for today's web.

Provided by: Association for Computing Machinery Topic: Mobility Date Added: Feb 2012 Format: PDF

Find By Topic