期刊名称:International Journal of Advanced Research In Computer Science and Software Engineering
印刷版ISSN:2277-6451
电子版ISSN:2277-128X
出版年度:2013
卷号:3
期号:8
出版社:S.S. Mishra
摘要:Web-delivered service is an emerging approach for IT service to reduce cost and improve delivery efficiency. Web-delivered services and applications have increased in both popularity and complexity. Daily tasks, such as banking, travel, and social networking, are all done via the web. Now the web applications have moved to the multi-tier architecture. In multi-tier architecture the business logic, data access and data storage are separated because it has a very good advantage. If any modification has to be done no need to modify the entire application, instead the modification is done to the specific tier where it is required. In recent times web applications suffers different types of vulnerabilities. They are SQL injection attack, Privilege Escalation Attack, session hijacking attack, direct DB attack, Denial of Service (DOS) attack and cross site scripting attack. We studied several existing systems to defend against these attacks
关键词:vulnerabilities; SQL injection; session hijacking; denial of service attacks; intrusion detection system; multi-;tiered web applica tion