Some security issues for web based frameworks

Roberts-Morpeth, P. and Ellman, Jeremy (2010) Some security issues for web based frameworks. In: 7th International Symposium on Communication Systems Networks and Digital Signal processing (CSNDSP), 21-23 July 2010, Northumbria University, Newcastle upon Tyne.

[img]
Preview
PDF (Conference paper)
Some security issues for web based frameworks.pdf

Download (144kB) | Preview

Abstract

This report investigates whether a vulnerability found in one web framework may be used to find a vulnerability in a different web framework. To test this hypothesis, several open source applications were installed in a secure test environment together with security analysis tools. Each one of the applications were developed using a different software framework. The results show that a vulnerability identified in one framework can often be used to find similar vulnerabilities in other frameworks. Crosssite scripting security issues are the most likely to succeed when being applied to more than one framework.

Item Type: Conference or Workshop Item (Paper)
Uncontrolled Keywords: cross-site scripting , open source applications , secure test environment , security analysis tools, vulnerability identification
Subjects: G400 Computer Science
Department: Faculties > Engineering and Environment > Mathematics and Information Sciences
Related URLs:
Depositing User: EPrint Services
Date Deposited: 25 Feb 2011 14:50
Last Modified: 10 May 2017 23:06
URI: http://nrl.northumbria.ac.uk/id/eprint/3294

Actions (login required)

View Item View Item

Downloads

Downloads per month over past year

View more statistics


Policies: NRL Policies | NRL University Deposit Policy | NRL Deposit Licence