A study on web application security and detecting security vulnerabilities

2017 6th International Conference on Reliability, Infocom Technologies and Optimization (Trends and Future Directions) (ICRITO) Pub Date : 2017-09-01 DOI:10.1109/ICRITO.2017.8342469

Sandeep Kumar, Renuka Mahajan, Naresh Kumar, S. Khatri

{"title":"A study on web application security and detecting security vulnerabilities","authors":"Sandeep Kumar, Renuka Mahajan, Naresh Kumar, S. Khatri","doi":"10.1109/ICRITO.2017.8342469","DOIUrl":null,"url":null,"abstract":"The world is exceedingly reliant on the Internet. Nowadays, web security is biggest challenge in the corporate world. It is considered as the principle framework for the worldwide data society. Web applications are prone to security attacks. Web security is securing a web application layer from attacks by unauthorized users. A lot of the issues that occur over a web application is mainly due to the improper input provided by the client. This paper discusses the different aspects of web security and it's weakness. The main elements of web security techniques such as the passwords, encryption, authentication and integrity are also discussed in this paper. The anatomy of a web application attack and the attack techniques are also covered in details. This paper explores a number of methods for combatting this class of threats and assesses why they have not proven more successful. This paper proposes a better way for minimizing these type of web vulnerabilities. It also provides the best security mechanisms for the said attacks.","PeriodicalId":357118,"journal":{"name":"2017 6th International Conference on Reliability, Infocom Technologies and Optimization (Trends and Future Directions) (ICRITO)","volume":"21 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2017-09-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"21","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2017 6th International Conference on Reliability, Infocom Technologies and Optimization (Trends and Future Directions) (ICRITO)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICRITO.2017.8342469","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 21

Abstract

The world is exceedingly reliant on the Internet. Nowadays, web security is biggest challenge in the corporate world. It is considered as the principle framework for the worldwide data society. Web applications are prone to security attacks. Web security is securing a web application layer from attacks by unauthorized users. A lot of the issues that occur over a web application is mainly due to the improper input provided by the client. This paper discusses the different aspects of web security and it's weakness. The main elements of web security techniques such as the passwords, encryption, authentication and integrity are also discussed in this paper. The anatomy of a web application attack and the attack techniques are also covered in details. This paper explores a number of methods for combatting this class of threats and assesses why they have not proven more successful. This paper proposes a better way for minimizing these type of web vulnerabilities. It also provides the best security mechanisms for the said attacks.

查看原文本刊更多论文

web应用程序安全性及安全漏洞检测研究

这个世界非常依赖互联网。如今，网络安全是企业界面临的最大挑战。它被认为是全球数据社会的主要框架。Web应用程序容易受到安全攻击。Web安全是指保护Web应用层免受未经授权用户的攻击。在web应用程序中出现的许多问题主要是由于客户端提供的输入不正确。本文讨论了网络安全的不同方面及其弱点。本文还讨论了密码、加密、身份验证和完整性等web安全技术的主要组成部分。对web应用程序攻击的剖析和攻击技术也进行了详细介绍。本文探讨了一些对抗这类威胁的方法，并评估了为什么它们没有被证明是更成功的。本文提出了一种更好的方法来最小化这些类型的web漏洞。它还为上述攻击提供了最佳的安全机制。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2017 6th International Conference on Reliability, Infocom Technologies and Optimization (Trends and Future Directions) (ICRITO)

自引率

0.00%

发文量