Mobile cloud computing (MCC) is the state-of-the-art mobile distributed computing model
that incorporates multitude of heterogeneous cloud-based resources to augment …

Phishing is essentially a social engineering crime on the Web, whose rampant occurrences
and technique advancements are posing big challenges for researchers in both academia …

One of the most important parts of any system is authentication. Appreciated as the first and
the last line of defense in the great majority of cases, authentication systems can usually …

Content Delivery Network (CDN) and Hypertext Transfer Protocol Secure (HTTPS) are two
popular but independent web technologies, each of which has been well studied …

We define a small-step operational semantics for the ECMAScript standard language
corresponding to JavaScript, as a basis for analyzing security properties of web applications …

HTTP cookies are the de facto mechanism for session authentication in Web applications.
However, their inherent security weaknesses allow attacks against the integrity of Web …

Many anti-phishing mechanisms currently focus on helping users verify whether a Web site
is genuine. However, usability studies have demonstrated that prevention-based …

Phishing is now a serious threat to the security of Internet users' confidential information.
Basically, an attacker (phisher) tricks people into divulging sensitive information by sending …

Authenticating humans to computers remains a notable weak point in computer security
despite decades of effort. Although the security research community has explored dozens of …

Password-based authentication is the dominant form of access control in web services.
Unfortunately, it proves to be more and more inadequate every year. Even if users choose …