Please use this identifier to cite or link to this item: http://hdl.handle.net/10603/24523
Title: Prevention of code injection vulnerabilities in web applications through web services
Researcher: Shanmuga Neethi, V
Guide(s): Swamynathan, S
Keywords: Code injection vulnerabilities
Information and communication engineering
Web applications
Web services
Upload Date: 3-Sep-2014
University: Anna University
Completed Date: 01/10/2013
Abstract: Providing secure service in a web environment is of growing concern and a real challenge in web application security Security remains a major challenge to the entire web especially since the recent sharp increase in remotely exploitable vulnerabilities have been attributed to web application bugs Most of the threats are created through application level vulnerabilities which have been exploited with serious consequences Among the various types of application level vulnerabilities code injection vulnerabilities are widely prevalent Code Injection is a type of exploitation caused by newlineprocessing malicious data input The common code injection vulnerabilities are SQL injection XPath injection Cross site scripting XSS attack and Session hijacking To prevent code injection vulnerabilities a novel mechanism called Web Applications Secure System from Code Injection Vulnerabilities through Web Services is proposed and designed The WAPS CIVS system has four major preventer components such as the SQL injection preventer XPath injection preventer Cross site script attack preventer and session hijacking preventer The SQL injection preventer system of WAPS CIVS contributes to the identification of the invalid SQL statements with vulnerable user input Whenever the user provides the inputs to the web application these inputs are the core part to form the SQL query which will be crafted at application logic and later will run at the data logic to provide the necessary data support newline newline
Pagination: xxxii, 202p.
URI: http://hdl.handle.net/10603/24523
Appears in Departments:Faculty of Information and Communication Engineering

Files in This Item:
File Description SizeFormat 
01_title.pdfAttached File24.04 kBAdobe PDFView/Open
02_certificate.pdf388.44 kBAdobe PDFView/Open
03_abstract.pdf15.47 kBAdobe PDFView/Open
04_acknowledgement.pdf6.54 kBAdobe PDFView/Open
05_contents.pdf30.08 kBAdobe PDFView/Open
06_chapter1.pdf1.16 MBAdobe PDFView/Open
07_chapter2.pdf764.44 kBAdobe PDFView/Open
08_chapter3.pdf762.91 kBAdobe PDFView/Open
09_chapter4.pdf648.54 kBAdobe PDFView/Open
10_chapter5.pdf562.73 kBAdobe PDFView/Open
11_chapter6.pdf602.8 kBAdobe PDFView/Open
12_chapter7.pdf1.96 MBAdobe PDFView/Open
13_chapter8.pdf24.69 kBAdobe PDFView/Open
14_references.pdf45.24 kBAdobe PDFView/Open
15_publications.pdf8.83 kBAdobe PDFView/Open
16_vitae.pdf6.07 kBAdobe PDFView/Open


Items in Shodhganga are protected by copyright, with all rights reserved, unless otherwise indicated.