Roberts-Morpeth, P. and Ellman, Jeremy (2010) Some security issues for web based frameworks. In: 7th International Symposium on Communication Systems Networks and Digital Signal processing (CSNDSP), 21-23 July 2010, Northumbria University, Newcastle upon Tyne.
|
PDF (Conference paper)
Some security issues for web based frameworks.pdf Download (144kB) | Preview |
Abstract
This report investigates whether a vulnerability found in one web framework may be used to find a vulnerability in a different web framework. To test this hypothesis, several open source applications were installed in a secure test environment together with security analysis tools. Each one of the applications were developed using a different software framework. The results show that a vulnerability identified in one framework can often be used to find similar vulnerabilities in other frameworks. Crosssite scripting security issues are the most likely to succeed when being applied to more than one framework.
| Item Type: | Conference or Workshop Item (Paper) |
|---|---|
| Uncontrolled Keywords: | cross-site scripting , open source applications , secure test environment , security analysis tools, vulnerability identification |
| Subjects: | G400 Computer Science |
| Department: | Faculties > Engineering and Environment > Mathematics, Physics and Electrical Engineering |
| Related URLs: | |
| Depositing User: | EPrint Services |
| Date Deposited: | 25 Feb 2011 14:50 |
| Last Modified: | 17 Dec 2023 12:36 |
| URI: | https://nrl.northumbria.ac.uk/id/eprint/3294 |
Actions (login required)
 |
View Item |
Downloads
Downloads per month over past year
