ผู้ใช้:Chatree2023/ทดลองเขียน

__LEAD_SECTION__[แก้]

In cryptography and computer security, a man-in-the-middle^[a] attack is a cyberattack where the attacker secretly relays and possibly alters the communications between two parties who believe that they are directly communicating with each other, as the attacker has inserted themselves between the two parties.^[8]

↑ Gabbi Fisher; Luke Valenta (March 18, 2019). "Monsters in the Middleboxes: Introducing Two New Tools for Detecting HTTPS Interception".
↑ Fassl, Matthias (April 23, 2018). Usable Authentication Ceremonies in Secure Instant Messaging (PDF) (Dipl.-Ing.). Technische Universität Wien.
↑ Poddebniak, Damian; Ising, Fabian; Böck, Hanno; Schinzel, Sebastian (August 13, 2021). Why TLS Is Better Without STARTTLS: A Security Analysis of STARTTLS in the Email Context (PDF). 30th USENIX Security Symposium (ภาษาอังกฤษ). p. 4366. ISBN 978-1-939133-24-3. When a Meddler-in-the-Middle (MitM) attacker removes the STARTTLS capability from the server response, they can easily downgrade the connection to plaintext.
↑ "Manipulator-in-the-middle attack". OWASP Community Pages. OWASP Foundation. สืบค้นเมื่อ สิงหาคม 1, 2022.
↑ "MitM". MDN Web Docs. Mozilla. กรกฎาคม 13, 2022. สืบค้นเมื่อ สิงหาคม 1, 2022.
↑ "Person-in-the-middle". 2020-10-11.
↑ "From cookie theft to BEC: Attackers use AiTM phishing sites as entry point to further financial fraud". Microsoft. 12 July 2022.
↑ Elakrat, Mohamed Abdallah; Jung, Jae Cheon (2018-06-01). "Development of field programmable gate array–based encryption module to mitigate man-in-the-middle attack for nuclear power plant data communication network". Nuclear Engineering and Technology (ภาษาอังกฤษ). 50 (5): 780–787. doi:10.1016/j.net.2018.01.018.

อ้างอิงผิดพลาด: มีป้ายระบุ <ref> สำหรับกลุ่มชื่อ "lower-alpha" แต่ไม่พบป้ายระบุ <references group="lower-alpha"/> ที่สอดคล้องกัน

[cloudflare-1] Gabbi Fisher; Luke Valenta (March 18, 2019). "Monsters in the Middleboxes: Introducing Two New Tools for Detecting HTTPS Interception".

[ifs-2] Fassl, Matthias (April 23, 2018). Usable Authentication Ceremonies in Secure Instant Messaging (PDF) (Dipl.-Ing.). Technische Universität Wien.

[3] Poddebniak, Damian; Ising, Fabian; Böck, Hanno; Schinzel, Sebastian (August 13, 2021). Why TLS Is Better Without STARTTLS: A Security Analysis of STARTTLS in the Email Context (PDF). 30th USENIX Security Symposium (ภาษาอังกฤษ). p. 4366. ISBN 978-1-939133-24-3. When a Meddler-in-the-Middle (MitM) attacker removes the STARTTLS capability from the server response, they can easily downgrade the connection to plaintext.

[4] "Manipulator-in-the-middle attack". OWASP Community Pages. OWASP Foundation. สืบค้นเมื่อ สิงหาคม 1, 2022.

[5] "MitM". MDN Web Docs. Mozilla. กรกฎาคม 13, 2022. สืบค้นเมื่อ สิงหาคม 1, 2022.

[6] "Person-in-the-middle". 2020-10-11.

[7] "From cookie theft to BEC: Attackers use AiTM phishing sites as entry point to further financial fraud". Microsoft. 12 July 2022.

[9] Elakrat, Mohamed Abdallah; Jung, Jae Cheon (2018-06-01). "Development of field programmable gate array–based encryption module to mitigate man-in-the-middle attack for nuclear power plant data communication network". Nuclear Engineering and Technology (ภาษาอังกฤษ). 50 (5): 780–787. doi:10.1016/j.net.2018.01.018.

[a]

[8]