Security and Scalability of E-Commerce Website by OWASP threats.

2023 6th International Conference on Information Systems and Computer Networks (ISCON) Pub Date : 2023-03-03 DOI:10.1109/ISCON57294.2023.10111955

Mayank Srivastava, Animesh Raghuvanshi, Dhruv Khandelwal

{"title":"Security and Scalability of E-Commerce Website by OWASP threats.","authors":"Mayank Srivastava, Animesh Raghuvanshi, Dhruv Khandelwal","doi":"10.1109/ISCON57294.2023.10111955","DOIUrl":null,"url":null,"abstract":"In the current age of fast demanding services related to the E-Commercial commodities, it becomes the need of the hour to protect each and every detail of our customer and the website because after all, security of the data is our prime priority. Moreover this field has good set of areas in which extensive studies and research could be done. Each year we see thousands of local website and their data which is leaked or get encountered by some of top programmers. In this paper, we will try to secure our website from some of the top listed threats on OWASP (Open Web Application Security Project), which is also known as OWASP 10. The paper is a detailed analysis of how to secure our website from phishing attack, broken authentication, sensitive data exposure, XSS Attack, parameter tampering and SQL injection. In terms of scalability we will go with the technique of database replication and. To make our study effective we will be using various cheat sheets by OWASP and some tools like Jenkins, burp suite, network scanner, wire-shark.","PeriodicalId":280183,"journal":{"name":"2023 6th International Conference on Information Systems and Computer Networks (ISCON)","volume":"16 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2023-03-03","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2023 6th International Conference on Information Systems and Computer Networks (ISCON)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ISCON57294.2023.10111955","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

Abstract

In the current age of fast demanding services related to the E-Commercial commodities, it becomes the need of the hour to protect each and every detail of our customer and the website because after all, security of the data is our prime priority. Moreover this field has good set of areas in which extensive studies and research could be done. Each year we see thousands of local website and their data which is leaked or get encountered by some of top programmers. In this paper, we will try to secure our website from some of the top listed threats on OWASP (Open Web Application Security Project), which is also known as OWASP 10. The paper is a detailed analysis of how to secure our website from phishing attack, broken authentication, sensitive data exposure, XSS Attack, parameter tampering and SQL injection. In terms of scalability we will go with the technique of database replication and. To make our study effective we will be using various cheat sheets by OWASP and some tools like Jenkins, burp suite, network scanner, wire-shark.

查看原文本刊更多论文

受OWASP威胁的电子商务网站的安全性和可扩展性。

在当今这个对电子商务商品的服务要求越来越高的时代，保护客户和网站的每一个细节成为了时代的需要，因为毕竟，数据的安全是我们的首要任务。此外，这一领域有一系列可以进行广泛研究和研究的领域。每年我们都会看到成千上万的本地网站和他们的数据被泄露或被一些顶级程序员遇到。在本文中，我们将尝试保护我们的网站免受OWASP(开放Web应用程序安全项目)(也称为OWASP 10)上列出的一些顶级威胁的侵害。本文详细分析了如何防止网络钓鱼攻击、身份验证破坏、敏感数据泄露、跨站攻击、参数篡改和SQL注入等问题。在可伸缩性方面，我们将使用数据库复制和。为了使我们的学习更有效，我们将使用OWASP的各种小抄表和一些工具，如Jenkins，打嗝套件，网络扫描仪，wire-shark。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2023 6th International Conference on Information Systems and Computer Networks (ISCON)

自引率

0.00%

发文量