TY - GEN
T1 - Analysis of WEB Browsers of HSTS Security Under the MITM Management Environment
AU - Bareño-Gutiérrez, Raúl
AU - Sevillano, Alexandra María López
AU - Díaz-Piraquive, Flor Nancy
AU - González-Crespo, Ruben
N1 - Publisher Copyright:
© 2021, Springer Nature Switzerland AG.
PY - 2021
Y1 - 2021
N2 - The transactional websites and services on the cloud, have actually become the most used browsers, thanks to their portability and ease of use, with a significant increase in the development of cloud solutions, implementing digital contexts under the 4.0 web, which generated an increase of possibilities for transactions of different types. However, every time more security issues arise. Due to this problem, the computer security is a rising trend, generating new possibilities to mitigate vulnerabilities when handling the information in a transactional web site; an analysis is made of performance, weaknesses and strengths of the HSTS standard, as a security complement of the SSL/TLS protocol. Different tests scenarios are verified under a man attack in the MITM environment, to intercept or capture the traffic sent and received during web transactions. That is how we identify if the standard can prevent that intrusion, which is of vital importance for the different transactional environments actually used, such as bank entities or online purchases; vulnerabilities of the standard are verified upon making the first request to a website, which strengthens and secures transactions done from the beginning of the transaction to its ending, in an encrypted way. Browsers analyzed - Mozilla Firefox, Google Chrome and internet Explorer, under controlled corporate and personal environments; The security importance of the browser is outlined, Google Chrome being the best one in performance under an internet hacking. The other browsers present some shortcomings during the first interconnection request, during some milliseconds under the point to point model, for the initial phase of information interchange.
AB - The transactional websites and services on the cloud, have actually become the most used browsers, thanks to their portability and ease of use, with a significant increase in the development of cloud solutions, implementing digital contexts under the 4.0 web, which generated an increase of possibilities for transactions of different types. However, every time more security issues arise. Due to this problem, the computer security is a rising trend, generating new possibilities to mitigate vulnerabilities when handling the information in a transactional web site; an analysis is made of performance, weaknesses and strengths of the HSTS standard, as a security complement of the SSL/TLS protocol. Different tests scenarios are verified under a man attack in the MITM environment, to intercept or capture the traffic sent and received during web transactions. That is how we identify if the standard can prevent that intrusion, which is of vital importance for the different transactional environments actually used, such as bank entities or online purchases; vulnerabilities of the standard are verified upon making the first request to a website, which strengthens and secures transactions done from the beginning of the transaction to its ending, in an encrypted way. Browsers analyzed - Mozilla Firefox, Google Chrome and internet Explorer, under controlled corporate and personal environments; The security importance of the browser is outlined, Google Chrome being the best one in performance under an internet hacking. The other browsers present some shortcomings during the first interconnection request, during some milliseconds under the point to point model, for the initial phase of information interchange.
UR - http://www.scopus.com/inward/record.url?scp=85113566444&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85113566444&partnerID=8YFLogxK
U2 - 10.1007/978-3-030-81635-3_27
DO - 10.1007/978-3-030-81635-3_27
M3 - Conference contribution
AN - SCOPUS:85113566444
SN - 9783030816346
T3 - Communications in Computer and Information Science
SP - 331
EP - 344
BT - Knowledge Management in Organizations - 15th International Conference, KMO 2021, Proceedings
A2 - Uden, Lorna
A2 - Ting, I-Hsien
A2 - Wang, Kai
PB - Springer Science and Business Media Deutschland GmbH
T2 - 15th International Conference on Knowledge Management in Organizations, KMO 2021
Y2 - 20 July 2021 through 22 July 2021
ER -