Nemesis: Preventing Authentication & [and] Access Control Vulnerabilities in Web Applications
This paper presents Nemesis, a novel methodology for mitigating authentication bypass and access control vulnerabilities in existing web applications. Authentication attacks occur when a web application authenticates users unsafely, granting access to web clients that lack the appropriate crede...
Main Authors: | , , |
---|---|
Other Authors: | |
Format: | Article |
Language: | en_US |
Published: |
USENIX Association
2011
|
Online Access: | http://hdl.handle.net/1721.1/62182 https://orcid.org/0000-0003-0238-2703 |