METHOD AND SYSTEM FOR IDENTIFYING A REPLAY ATTACK BY AN ACCESS DEVICE TO A COMPUTER SYSTEM

摘要

A method is provided of authenticating a user device (205) requesting access to a computer system (255). The method includes encrypting current session data at a connection application of the user device (105) via which a user requests access to a computer system (245), the current session data changing with each user request. The encrypted current session data is then included in user authentication data in an access request which is communicated in plain text which is then decrypted. Reference session data is then compared with the decrypted current session data and the user request is categorized dependent upon the outcome of the comparison.