Category:Attack Categorisation By Attacker Model: Access to Valid Token

From Single Sign-On Attacks
Revision as of 16:24, 2 February 2016 by Anna (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search
The printable version is no longer supported and may have rendering errors. Please update your browser bookmarks and please use the default browser print function instead.

The attacker knows the component for identification and authentication of the user. The goal in this class of attacks is to expand the rights provided by the given token. Using of Cross-Site-Scripting (XSS) attack the malefactor can obtain a token.

Part of main category:

Pages in category "Attack Categorisation By Attacker Model: Access to Valid Token"

The following 3 pages are in this category, out of 3 total.