dc.contributor.author |
Wickramasinghe, B.K.T.P. |
|
dc.contributor.author |
Wedasinghe., N. |
|
dc.date.accessioned |
2018-08-10T08:55:16Z |
|
dc.date.available |
2018-08-10T08:55:16Z |
|
dc.date.issued |
2018 |
|
dc.identifier.citation |
Wickramasinghe,B.K.T.P. and Wedasinghe.N. (2018). Web application securing methods. International Research Conference on Smart Computing and Systems Engineering - SCSE 2018, Department of Industrial Management, Faculty of Science, University of Kelaniya, Sri Lanka. p.98. |
en_US |
dc.identifier.uri |
http://repository.kln.ac.lk/handle/123456789/18987 |
|
dc.description.abstract |
Web applications are one of the most prevalent platforms for information and services delivery over Internet today. As they are increasingly used for critical services, web applications become a popular and valuable target for security attacks. Although a large body of techniques have been developed to fortify web applications and mitigate the attacks toward web applications, there is little effort devoted to drawing connections among these techniques and building a big picture of web application security research. The main objective of this paper is to point out the possible vulnerabilities in a content serving web application and propose suitable security techniques to protect the site from the attack and provide significant help to the developer of a web application. This research paper organizes the existing research works on securing web applications into three categories based on their design philosophy: security by construction, security by verification and security by protection. Finally, this research paper summarizes the lessons learnt and discuss future research opportunities in this area. |
en_US |
dc.language.iso |
en |
en_US |
dc.publisher |
International Research Conference on Smart Computing and Systems Engineering - SCSE 2018 |
en_US |
dc.subject |
Cross-site scripting |
en_US |
dc.subject |
SQL injection |
en_US |
dc.subject |
Web application |
en_US |
dc.title |
Web application securing methods |
en_US |
dc.type |
Article |
en_US |