期刊名称:International Journal of Computer Science and Network Security
印刷版ISSN:1738-7906
出版年度:2015
卷号:15
期号:2
页码:1-6
出版社:International Journal of Computer Science and Network Security
摘要:Assessment of web servers on country level shows the overall sense of security for secure businesses, official and educational activities. In this research paper we decided to find out all possible vulnerabilities in Saudi Arabian web servers. To assess these vulnerabilities we selected number of open source tools and tested about 169 most popular web servers of government, Financial, Academic, and commercial organizations. The challenge of this work was the selection of an appropriate tool and proper assessment of the most popular web servers in every sector of the country. This assessment seemed to us interesting because of two reasons, first security is a burning issue of the world and it can be minimized by finding them out .Secondly it is in the interest of Saudi Arabian national goals. This way many unknown vulnerabilities can be known to the programmers easily. This problem was not addressed before for Saudi Arabian web servers according to our literature review, so that��s why it carries high importance. The purpose of using different tools is to avoid false positive and false negative. We will analyze and enlist all the vulnerabilities found out by the tools with respect to their organizations. The vulnerabilities will be shown anonymously and with the level of severity. These will be followed by graphs showing the ""organization vs. vulnerabilities"" relationship. A graph on ��recommended patches vs. vulnerable organization server�� is also included for those organizations that are conscious about their Organization privacy and confidentiality
关键词:Vulnerability; Assessment; web server; Saudi Arabia
