Preventing Health Care Web Applications from Session Hijack Attacks Using Session Key Authentication and Distributed Session Id

Usage of health care web applications by network of hospitals and health care service providers are increases in the current technology world. Accessing the confidential healthcare information by doctors, patients over the wireless network is at the risk of information theft by various attacks. Most of the multispeciality hospitals situated in metropolitan cities, chief doctors are sending the prescriptions to the junior doctors over the internet after successful completion of the surgery. Individual session is created for each user to access the health care data in a web application. Hackers make use of sniffer tools to crack the session ID and hijack the session in order to steal the confidential data of the patients. In this paper, we have proposed the session key authentication method and distributed session ID to secure the medical data against session hijack attacks in wireless networks.