期刊名称:International Journal of Computer Technology and Applications
电子版ISSN:2229-6093
出版年度:2013
卷号:4
期号:1
页码:141-144
出版社:Technopark Publications
摘要:In the recent years, web applications are the number one source of vulnerabilities targeted by Hackers. Although traditionally companies have used intrusion detection and prevention systems which monitor the network in general, there is now a widespread use of Web Application Firewalls as a security solution that monitors and protects only web applications. A web application is a software application that is accessed over the Internet using HyperText Transfer Protocol (HTTP). In a typical web application a client, such as a browser, interacts with a web server by exchanging a series of messages that are made up of HTTP requests and responses. An attacker often exploits vulnerabilities that exist in a web application to launch attacks. The types of attacks against web applications include Cross-site Scripting (XSS), SQL injection and Cross-Site Request Forgery (CSRF) attacks. The paper proposed a Web Application Firewall to protect against known and unknown attacks
关键词:Web application; web application firewalls; web attacks; HTTP
