{"title":"利用漏洞评估和渗透测试提高Web应用的安全性","authors":"Arvind Goutam, V. Tiwari","doi":"10.1109/ISCON47742.2019.9036175","DOIUrl":null,"url":null,"abstract":"In the present scenario, the usage of internet is enormous and is escalating day by day. Internet facilities are employed in almost every field of work and people are becoming depending on it, with the increasing dependency on the internet, concern regarding information security has been increased. Because most of the work, e-commerce, chatting, payment of the bill, etc. are work through over the internet. That is why security is most important for any web site. Basically, such security concern is high in the field of organizations, institutions, and the financial sector. This problem is greater in the field of the finance sector, this problem is greater in this field not only because the financial capital associated but also organizations and client sensitive and private data. If this data hack by the attacker then attacker or unauthorized user can use this data in the wrong way. To test the security in web applications, the company performs penetration testing which identifies web applications vulnerabilities and attackers actions. This paper is focused on web application security. In this proposed research work, a framework has been built to test the vulnerabilities. This framework has the same working module as that of a financial institutions website. After penetration testing, based on the vulnerability further, a framework will be designed which will provide more security to such web sites. The developed framework can be used in several institutions, company, Organization to test the vulnerability.","PeriodicalId":124412,"journal":{"name":"2019 4th International Conference on Information Systems and Computer Networks (ISCON)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"14","resultStr":"{\"title\":\"Vulnerability Assessment and Penetration Testing to Enhance the Security of Web Application\",\"authors\":\"Arvind Goutam, V. Tiwari\",\"doi\":\"10.1109/ISCON47742.2019.9036175\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In the present scenario, the usage of internet is enormous and is escalating day by day. Internet facilities are employed in almost every field of work and people are becoming depending on it, with the increasing dependency on the internet, concern regarding information security has been increased. Because most of the work, e-commerce, chatting, payment of the bill, etc. are work through over the internet. That is why security is most important for any web site. Basically, such security concern is high in the field of organizations, institutions, and the financial sector. This problem is greater in the field of the finance sector, this problem is greater in this field not only because the financial capital associated but also organizations and client sensitive and private data. If this data hack by the attacker then attacker or unauthorized user can use this data in the wrong way. To test the security in web applications, the company performs penetration testing which identifies web applications vulnerabilities and attackers actions. This paper is focused on web application security. In this proposed research work, a framework has been built to test the vulnerabilities. This framework has the same working module as that of a financial institutions website. After penetration testing, based on the vulnerability further, a framework will be designed which will provide more security to such web sites. The developed framework can be used in several institutions, company, Organization to test the vulnerability.\",\"PeriodicalId\":124412,\"journal\":{\"name\":\"2019 4th International Conference on Information Systems and Computer Networks (ISCON)\",\"volume\":\"1 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2019-11-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"14\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2019 4th International Conference on Information Systems and Computer Networks (ISCON)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ISCON47742.2019.9036175\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2019 4th International Conference on Information Systems and Computer Networks (ISCON)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ISCON47742.2019.9036175","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Vulnerability Assessment and Penetration Testing to Enhance the Security of Web Application
In the present scenario, the usage of internet is enormous and is escalating day by day. Internet facilities are employed in almost every field of work and people are becoming depending on it, with the increasing dependency on the internet, concern regarding information security has been increased. Because most of the work, e-commerce, chatting, payment of the bill, etc. are work through over the internet. That is why security is most important for any web site. Basically, such security concern is high in the field of organizations, institutions, and the financial sector. This problem is greater in the field of the finance sector, this problem is greater in this field not only because the financial capital associated but also organizations and client sensitive and private data. If this data hack by the attacker then attacker or unauthorized user can use this data in the wrong way. To test the security in web applications, the company performs penetration testing which identifies web applications vulnerabilities and attackers actions. This paper is focused on web application security. In this proposed research work, a framework has been built to test the vulnerabilities. This framework has the same working module as that of a financial institutions website. After penetration testing, based on the vulnerability further, a framework will be designed which will provide more security to such web sites. The developed framework can be used in several institutions, company, Organization to test the vulnerability.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
