期刊名称:International Journal of Computer Science and Information Technologies
电子版ISSN:0975-9646
出版年度:2016
卷号:7
期号:4
页码:1801-1804
出版社:TechScience Publications
摘要:Online application security is information securitythat consist of security of websites, web applications and orweb services. Developed online application security relies onthe foundation of application security but focuses on worldwide web and their libraries. Due to the advancement in Web2.0, more knowledge sharing through social networking andincreasing business adoption over the web for doing businessand delivering services, web applications are directlyattacked. Attackers rather try to compromise the companynetwork or the users accessing the website by forcing them toclick on the forged malicious input, because of which industryis focusing more attention to online application security alongwith security of the underlying computer network andoperating systems. Online application designing should beimproved by including security analysis and checks at earlystages of development as well as throughout the softwaredevelopment life-cycle. As most of the existing systems detectonly one attack at a time with limited rules, we propose anenhanced model that can detect two attacks within the samesimulation environment with updated rule libraries.
关键词:Cross-Site Request Forgery; CSRF; Broken;Authentication and Session Management; XSS