{"id":"https://openalex.org/W1995054968","doi":"https://doi.org/10.1145/1321211.1321229","title":"Client certificate and IP address based multi-factor authentication for J2EE web applications","display_name":"Client certificate and IP address based multi-factor authentication for J2EE web applications","publication_year":2007,"publication_date":"2007-01-01","ids":{"openalex":"https://openalex.org/W1995054968","doi":"https://doi.org/10.1145/1321211.1321229","mag":"1995054968"},"language":"en","primary_location":{"id":"doi:10.1145/1321211.1321229","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1321211.1321229","pdf_url":null,"source":{"id":"https://openalex.org/S4210189159","display_name":"Proceedings of CASCON","issn_l":"1705-7345","issn":["1705-7345","1705-7353","1705-7361"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2007 conference of the center for advanced studies on Collaborative research  - CASCON '07","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5090545099","display_name":"Hee Sun Park","orcid":"https://orcid.org/0000-0002-9730-8524"},"institutions":[{"id":"https://openalex.org/I122754148","display_name":"SAS Institute (United States)","ror":"https://ror.org/01093z329","country_code":"US","type":"company","lineage":["https://openalex.org/I122754148"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Heesun Park","raw_affiliation_strings":["SAS Institute Inc; Cary NC"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"SAS Institute Inc; Cary NC","institution_ids":["https://openalex.org/I122754148"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5040464559","display_name":"Stan Redford","orcid":null},"institutions":[{"id":"https://openalex.org/I122754148","display_name":"SAS Institute (United States)","ror":"https://ror.org/01093z329","country_code":"US","type":"company","lineage":["https://openalex.org/I122754148"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Stan Redford","raw_affiliation_strings":["SAS Institute Inc; Cary NC"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"SAS Institute Inc; Cary NC","institution_ids":["https://openalex.org/I122754148"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":1,"corresponding_author_ids":[],"corresponding_institution_ids":["https://openalex.org/I122754148"],"apc_list":null,"apc_paid":null,"fwci":1.0298,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.85883645,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"167","last_page":"167"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9937999844551086,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},"topics":[{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9937999844551086,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T10651","display_name":"IPv6, Mobility, Handover, Networks, Security","score":0.9872000217437744,"subfield":{"id":"https://openalex.org/subfields/2208","display_name":"Electrical and Electronic Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12203","display_name":"Mobile Agent-Based Network Management","score":0.9801999926567078,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7511545419692993},{"id":"https://openalex.org/keywords/authentication","display_name":"Authentication (law)","score":0.5325286388397217},{"id":"https://openalex.org/keywords/certificate","display_name":"Certificate","score":0.5164077877998352},{"id":"https://openalex.org/keywords/root-certificate","display_name":"Root certificate","score":0.48519399762153625},{"id":"https://openalex.org/keywords/multi-factor-authentication","display_name":"Multi-factor authentication","score":0.47852766513824463},{"id":"https://openalex.org/keywords/web-application-security","display_name":"Web application security","score":0.45548880100250244},{"id":"https://openalex.org/keywords/web-application","display_name":"Web application","score":0.4472120404243469},{"id":"https://openalex.org/keywords/factor","display_name":"Factor (programming language)","score":0.4452091455459595},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.4390644431114197},{"id":"https://openalex.org/keywords/public-key-certificate","display_name":"Public key certificate","score":0.41563084721565247},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.37085556983947754},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.3574400544166565},{"id":"https://openalex.org/keywords/web-service","display_name":"Web service","score":0.31079140305519104},{"id":"https://openalex.org/keywords/authentication-protocol","display_name":"Authentication protocol","score":0.286618709564209},{"id":"https://openalex.org/keywords/web-development","display_name":"Web development","score":0.283025860786438},{"id":"https://openalex.org/keywords/public-key-cryptography","display_name":"Public-key cryptography","score":0.1289164423942566},{"id":"https://openalex.org/keywords/encryption","display_name":"Encryption","score":0.06392231583595276}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7511545419692993},{"id":"https://openalex.org/C148417208","wikidata":"https://www.wikidata.org/wiki/Q4825882","display_name":"Authentication (law)","level":2,"score":0.5325286388397217},{"id":"https://openalex.org/C96865113","wikidata":"https://www.wikidata.org/wiki/Q2946816","display_name":"Certificate","level":2,"score":0.5164077877998352},{"id":"https://openalex.org/C62057728","wikidata":"https://www.wikidata.org/wiki/Q7366568","display_name":"Root certificate","level":5,"score":0.48519399762153625},{"id":"https://openalex.org/C194699767","wikidata":"https://www.wikidata.org/wiki/Q7878662","display_name":"Multi-factor authentication","level":4,"score":0.47852766513824463},{"id":"https://openalex.org/C59241245","wikidata":"https://www.wikidata.org/wiki/Q4781497","display_name":"Web application security","level":4,"score":0.45548880100250244},{"id":"https://openalex.org/C118643609","wikidata":"https://www.wikidata.org/wiki/Q189210","display_name":"Web application","level":2,"score":0.4472120404243469},{"id":"https://openalex.org/C2781039887","wikidata":"https://www.wikidata.org/wiki/Q1391724","display_name":"Factor (programming language)","level":2,"score":0.4452091455459595},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.4390644431114197},{"id":"https://openalex.org/C167529545","wikidata":"https://www.wikidata.org/wiki/Q274758","display_name":"Public key certificate","level":4,"score":0.41563084721565247},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.37085556983947754},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.3574400544166565},{"id":"https://openalex.org/C35578498","wikidata":"https://www.wikidata.org/wiki/Q193424","display_name":"Web service","level":2,"score":0.31079140305519104},{"id":"https://openalex.org/C21564112","wikidata":"https://www.wikidata.org/wiki/Q4825885","display_name":"Authentication protocol","level":3,"score":0.286618709564209},{"id":"https://openalex.org/C79373723","wikidata":"https://www.wikidata.org/wiki/Q386275","display_name":"Web development","level":3,"score":0.283025860786438},{"id":"https://openalex.org/C203062551","wikidata":"https://www.wikidata.org/wiki/Q201339","display_name":"Public-key cryptography","level":3,"score":0.1289164423942566},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.06392231583595276},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/1321211.1321229","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1321211.1321229","pdf_url":null,"source":{"id":"https://openalex.org/S4210189159","display_name":"Proceedings of CASCON","issn_l":"1705-7345","issn":["1705-7345","1705-7353","1705-7361"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2007 conference of the center for advanced studies on Collaborative research  - CASCON '07","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.5199999809265137,"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":["https://openalex.org/W1544794558","https://openalex.org/W2300877280","https://openalex.org/W2804804827","https://openalex.org/W4253144255","https://openalex.org/W2231252935","https://openalex.org/W2365438736","https://openalex.org/W2940998278","https://openalex.org/W4312905142","https://openalex.org/W1995054968","https://openalex.org/W194339889"],"abstract_inverted_index":{"Secure":[0],"and":[1,22,102],"encrypted":[2,19],"authentication":[3,16,51,77,101,110],"is":[4,66,86,126],"an":[5,18,89,118],"important":[6],"aspect":[7],"of":[8,33,98,109],"J2EE":[9],"web":[10,124],"application":[11,64,125],"security.":[12],"SSL":[13],"client":[14,49,75,84,99],"certificate":[15,50,76,85,100],"provides":[17],"log-on":[20],"mechanism":[21],"a":[23],"single":[24],"sign-on":[25],"capability":[26],"that":[27],"does":[28],"not":[29],"involve":[30],"the":[31,46,59,63,72,83,123],"use":[32],"passwords.":[34],"Unlike":[35],"SPNEGO-protocol-based":[36],"Kerberos":[37],"authentication,":[38],"which":[39],"requires":[40],"both":[41],"parties":[42],"to":[43,70,105,122],"be":[44],"in":[45],"same":[47],"domain,":[48],"works":[52],"across":[53],"domain":[54],"boundaries":[55],"as":[56,58,135],"long":[57],"user":[60],"registry":[61],"for":[62],"server":[65],"properly":[67],"set":[68],"up":[69],"handle":[71],"certificate.":[73],"But":[74],"comes":[78],"with":[79],"some":[80],"shortcomings---especially":[81],"when":[82],"used":[87],"from":[88],"unauthorized":[90],"machine.":[91],"We":[92,130],"will":[93,131],"examine":[94],"this":[95,107],"potential":[96],"vulnerability":[97],"show":[103],"how":[104],"make":[106],"type":[108],"more":[111],"secure":[112],"by":[113],"using":[114],"multi-factor":[115],"authentication.":[116],"Adding":[117],"IP-address-checking":[119],"servlet":[120],"filter":[121],"one":[127],"good":[128],"approach.":[129],"provide":[132],"implementation":[133],"details":[134],"well.":[136]},"counts_by_year":[],"updated_date":"2026-06-26T08:34:08.712188","created_date":"2025-10-10T00:00:00"}
