Print Email Facebook Twitter Hardening Cookies - Preventing Use of Stolen Cookies by Third Parties Title Hardening Cookies - Preventing Use of Stolen Cookies by Third Parties Author Kramer, Stijn (TU Delft Electrical Engineering, Mathematics and Computer Science) Contributor Smaragdakis, G. (mentor) Degree granting institution Delft University of Technology Programme Computer Science | Cyber Security Date 2022-09-23 Abstract In the modern day there exist many different ways that someone can steal your authentication cookies. Each of those ways needs to be mitigated through many different solutions. Would it not be better if instead of preventing theft, we could prevent the use of stolen cookies? This thesis therefore researches both existing and novel solutions that could be implemented to prevent stolen cookies from being used by third parties. The existing solutions are the Secure Cookie Scheme, One-Time Cookies, Origin-Bound Certificates, and the novel solutions, Fingerprinting and Challenge-Response. These solutions are compared through a conceptual analysis of their security benefits and a performance analysis. From these analyses is found that ideally the One-Time Cookie scheme should be used due to its security benefits and low performance cost. However due to lacking support by modern browsers, either the Secure Cookie Scheme or Fingerprinting, or both, could be used instead. To reference this document use: http://resolver.tudelft.nl/uuid:a2a8471f-be96-40ad-8490-19e209642abe Part of collection Student theses Document type master thesis Rights © 2022 Stijn Kramer Files PDF MSc_Thesis_SB_Kramer.pdf 2.41 MB Close viewer /islandora/object/uuid:a2a8471f-be96-40ad-8490-19e209642abe/datastream/OBJ/view