Open Access iconOpen Access

ARTICLE

crossmark

Design of an Efficient and Provable Secure Key Exchange Protocol for HTTP Cookies

by Waseem Akram1, Khalid Mahmood2, Hafiz Burhan ul Haq3, Muhammad Asif3, Shehzad Ashraf Chaudhry4,5, Taeshik Shon6,*

1 Graduate School of Engineering Science and Technology, National Yunlin University of Science and Technology, Yunlin, 64002, Taiwan
2 Future Technology Research Center, National Yunlin University of Science and Technology, Yunlin, 64002, Taiwan
3 Department of Computer Science, Lahore Garrison University, Lahore, 54920, Pakistan
4 Department of Computer Science and Information Technology, College of Engineering, Abu Dhabi University, Abu Dhabi, 69911, United Arab Emirates
5 Department of Software Engineering, Faculty of Engineering and Architecture, Nisantasi University, Istanbul, 34398, Turkey
6 Department of Cybersecurity, Ajou University, Suwon, 16499, Republic of Korea

* Corresponding Author: Taeshik Shon. Email: email

Computers, Materials & Continua 2024, 80(1), 263-280. https://doi.org/10.32604/cmc.2024.052405

Abstract

Cookies are considered a fundamental means of web application services for authenticating various Hypertext Transfer Protocol (HTTP) requests and maintains the states of clients’ information over the Internet. HTTP cookies are exploited to carry client patterns observed by a website. These client patterns facilitate the particular client’s future visit to the corresponding website. However, security and privacy are the primary concerns owing to the value of information over public channels and the storage of client information on the browser. Several protocols have been introduced that maintain HTTP cookies, but many of those fail to achieve the required security, or require a lot of resource overheads. In this article, we have introduced a lightweight Elliptic Curve Cryptographic (ECC) based protocol for authenticating client and server transactions to maintain the privacy and security of HTTP cookies. Our proposed protocol uses a secret key embedded within a cookie. The proposed protocol is more efficient and lightweight than related protocols because of its reduced computation, storage, and communication costs. Moreover, the analysis presented in this paper confirms that proposed protocol resists various known attacks.

Keywords


Cite This Article

APA Style
Akram, W., Mahmood, K., ul Haq, H.B., Asif, M., Chaudhry, S.A. et al. (2024). Design of an efficient and provable secure key exchange protocol for HTTP cookies. Computers, Materials & Continua, 80(1), 263-280. https://doi.org/10.32604/cmc.2024.052405
Vancouver Style
Akram W, Mahmood K, ul Haq HB, Asif M, Chaudhry SA, Shon T. Design of an efficient and provable secure key exchange protocol for HTTP cookies. Comput Mater Contin. 2024;80(1):263-280 https://doi.org/10.32604/cmc.2024.052405
IEEE Style
W. Akram, K. Mahmood, H. B. ul Haq, M. Asif, S. A. Chaudhry, and T. Shon, “Design of an Efficient and Provable Secure Key Exchange Protocol for HTTP Cookies,” Comput. Mater. Contin., vol. 80, no. 1, pp. 263-280, 2024. https://doi.org/10.32604/cmc.2024.052405



cc Copyright © 2024 The Author(s). Published by Tech Science Press.
This work is licensed under a Creative Commons Attribution 4.0 International License , which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited.
  • 1325

    View

  • 270

    Download

  • 0

    Like

Share Link