Data Mining and Knowledge Engineering

Open Access Open Access  Restricted Access Subscription Access
Open Access Open Access Open Access  Restricted Access Restricted Access Subscription Access

Web Application Protection from Wide Range of Web Vulnerabilities


Affiliations
1 Department of CSE at Sri Indu College of Engineering & Technology, India
2 Computer Science and Engineering from Sri Indu College of Engineering & Technology, JNTU, Hyderabad, India
     

   Subscribe/Renew Journal


Adoption of web applications is increasing for multipurpose services. However, their correct functioning is mission critical for many businesses. At the same time, Web applications tend to be error prone and implementation vulnerabilities are readily and commonly exploited by attackers. The design of countermeasures that detect or prevent such vulnerabilities or protect against their exploitation is an important research challenge for the fields of software engineering and security engineering. In this paper we introduce a single J2EE based web application which can able to handle several vulnerabilities at application level, mainly these are related to injection types, cross site scripting, browser caching and also protecting the session data dependency via changing session identifier at runtime, sequential access and session expiration. By handling all these things together in an application we can protect our web application successfully from the common vulnerabilities.

Keywords

Web Application, Vulnerabilities, Session Data, Security, Injection Flaw, Cross Site Scripting, Web Application Firewall (WAF).
User
Subscription Login to verify subscription
Notifications
Font Size

Abstract Views: 216

PDF Views: 3




  • Web Application Protection from Wide Range of Web Vulnerabilities

Abstract Views: 216  |  PDF Views: 3

Authors

K. Venkatesh Sharma
Department of CSE at Sri Indu College of Engineering & Technology, India
K. Satish Kumar
Computer Science and Engineering from Sri Indu College of Engineering & Technology, JNTU, Hyderabad, India

Abstract


Adoption of web applications is increasing for multipurpose services. However, their correct functioning is mission critical for many businesses. At the same time, Web applications tend to be error prone and implementation vulnerabilities are readily and commonly exploited by attackers. The design of countermeasures that detect or prevent such vulnerabilities or protect against their exploitation is an important research challenge for the fields of software engineering and security engineering. In this paper we introduce a single J2EE based web application which can able to handle several vulnerabilities at application level, mainly these are related to injection types, cross site scripting, browser caching and also protecting the session data dependency via changing session identifier at runtime, sequential access and session expiration. By handling all these things together in an application we can protect our web application successfully from the common vulnerabilities.

Keywords


Web Application, Vulnerabilities, Session Data, Security, Injection Flaw, Cross Site Scripting, Web Application Firewall (WAF).