Title :
Analysis and suggestions for the security of web applications
Author :
Yu, You ; Yang, Yuanyuan ; Gu, Jian ; Shen, Liang
Author_Institution :
Minist. of Public Security Quality Supervision & Testing Center of Security Products for Comput. Inf. Syst., Third Res. Inst. of Minist. of Public Security, Shanghai, China
Abstract :
As an essential and significant part of network security, the security of web applications has received more and more attentions at present. In this paper, we review the security of current web applications, and enumerate the most common attacks on them such as injection, cross site scripting, and insecure direct object references. Then by taking injection attack as an example, we explain the principles of injection attack and analyze the reasons for the vulnerability. Finally, to prevent these attacks, we provide several valuable suggestions.
Keywords :
Internet; SQL; security of data; SQL injection; Web security applications; cross site scripting; injection attack; insecure direct object references; network security; Artificial neural networks; Network servers; Security; Welding; SQL injection; security protection; vulnerability; web applications;
Conference_Titel :
Computer Science and Network Technology (ICCSNT), 2011 International Conference on
Conference_Location :
Harbin
Print_ISBN :
978-1-4577-1586-0
DOI :
10.1109/ICCSNT.2011.6181948
