Open Access Journal

ISSN : 2394-2320 (Online)

International Journal of Engineering Research in Computer Science and Engineering (IJERCSE)

Monthly Journal for Computer Science and Engineering

Open Access Journal

International Journal of Engineering Research in Computer Science and Engineering (IJERCSE)

Monthly Journal for Computer Science and Engineering

ISSN : 2394-2320 (Online)

Web Security: A Review

Author : Devraj 1

Date of Publication :20th December 2017

Abstract: Web apps are designing and evaluating vulnerability removal measures with very short turnaround time. The security of the website requires the assurance of privacy and data protection. This paper proposes a research approach in the web application system. The World Wide Web offers a wide range of advanced software. The security test methodology is based on an understanding of the interaction between the user and the server via HTTP. In this section, the author will discuss the mechanisms for the creation of web applications throughout order to recognize weak web application coding practices. In this section, the author discusses frames for web application security evaluation in order to identify bad coding practices for attacks such as SQL injecting and cross-site scripting that vulnerable web applications may have. SQL injection and XSS attacks are extremely dangerous, since the database is a key information source for the attacker. The suggested approach consists of creating a searchable research suite based on the heuristic genetic user session. The main goal of this article is to clarify the protection of a cloud-based framework for online testing.

Reference :

    1. F. Ö. Sönmez, “Security Qualitative Metrics for Open Web Application Security Project Compliance,” Procedia Comput. Sci., vol. 151, pp. 998–1003, 2019.
    2. Web application firewalls for security and regulatory compliance,” 2017.
    3. Z. Ghanbari, Y. Rahmani, H. Ghaffarian, and M. H. Ahmadzadegan, “Comparative approach to web application firewalls,” in Conference Proceedings of 2015 2nd International Conference on KnowledgeBased Engineering and Innovation, KBEI 2015, 2016, pp. 808–812.
    4. 2012 Trends Report: Application Security Risks. Cenzic, Inc., 2012.
    5. “The Basics of Web Application Security.” [Online]. Available: https://martinfowler.com/articles/web-security-basics.html. [Accessed: 18-Nov2019].
    6. “OWASP Top 10 - 2017: The Ten Most Critical Web Application Security Risks,” Open Web Appl. Secur. Proj., 2017
    7. “6 Ways To Strengthen Web App Security.” [Online]. Available: https://www.darkreading.com/riskmanagement/6-ways-to-strengthen-webapp-security/d/d-id/1106197. [Accessed: 18-Nov-2019].
    8. WHID Project is now a Joint WASC/OWASP Project. WASC, 2014.
    9. B. Musa Shuaibu, N. Md Norwawi, M. H. Selamat, and A. Al-Alwani, “Systematic review of web application security development model,” Artif. Intell. Rev., vol. 43, no. 2, pp. 259–276, 2013.
    10. “Web Application Vulnerability Scanners.”
    11. Source Code Security Analyzers.”
    12. Muhammad Noman, Muhammad Iqbal, Muhammad Talha Alam, Vishal Jain, Hira Mirza, Kamran Rasheed, “Web Unique Method (WUM): An Open Source Blackbox Scanner For Detecting Web Vulnerabilities”, International Journal of Advanced Computer Science and Applications (IJACSA) having ISSN No. 2156-557, Vol. 8, No. 12, December, 2017.
    13. Narinder K. Seera, Vishal Jain, “ Perspective of Database Services for Managing Large-Scale Data on the Cloud: A Comparative Study”, International Journal of Modern Education and Computer Science (IJMECS), Vol.7, No. 6, June, 2015 having ISSN No. 2075- 017X.

Recent Article