Developing secure web applications. (1st January 2012)
- Record Type:
- Journal Article
- Title:
- Developing secure web applications. (1st January 2012)
- Main Title:
- Developing secure web applications
- Authors:
- Choukse, Dharmendra
Kanellopoulos, Dimitris N.
Singh, Umesh Kumar - Abstract:
- The security of web applications is an important issue for any organisation that deploys its own websites. If an organisation takes the required precautions and countermeasures, it can prevent the possible attacks. Otherwise, its critical data, reputation and credibility will be at risk. Nowadays, firewalls, intrusion detection systems (IDS) and intrusion prevention systems (IPS) provide security at the network layer. However, more than 70% of present world's security attacks exploit the vulnerabilities at the application level. Cross-site scripting, SQL injection, cookie poisoning and forceful browsing are some of the most common website vulnerabilities. Stringent user input validation, proper session management, and exploitation of web application firewalls, etc., can be used as countermeasures to combat the attacks on websites. In this paper, we discuss how attackers can exploit the vulnerabilities of web applications and how we can implement effective countermeasures to secure our web applications.
- Is Part Of:
- International journal of internet technology and secured transactions. Volume 4:Number 2(2012)
- Journal:
- International journal of internet technology and secured transactions
- Issue:
- Volume 4:Number 2(2012)
- Issue Display:
- Volume 4, Issue 2 (2012)
- Year:
- 2012
- Volume:
- 4
- Issue:
- 2
- Issue Sort Value:
- 2012-0004-0002-0000
- Page Start:
- 221
- Page End:
- 236
- Publication Date:
- 2012-01-01
- Subjects:
- web applications security -- cross-side scripting -- SQL injection -- cookie poisoning -- forceful browsing
Internet -- Security measures -- Periodicals
Computer security -- Periodicals
Information systems management -- Security measures -- Periodicals
Computer networks -- Security measures -- Periodicals
Information technology -- Security measures -- Periodicals
005.805 - Journal URLs:
- http://www.inderscience.com/jhome.php?jcode=ijitst ↗
http://www.inderscience.com/ ↗ - Languages:
- English
- ISSNs:
- 1748-569X
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - BLDSS-3PM
British Library STI - ELD Digital store - Ingest File:
- 8740.xml