Please use this identifier to cite or link to this item:
http://hdl.handle.net/10603/24523
Title: | Prevention of code injection vulnerabilities in web applications through web services |
Researcher: | Shanmuga Neethi, V |
Guide(s): | Swamynathan, S |
Keywords: | Code injection vulnerabilities Information and communication engineering Web applications Web services |
Upload Date: | 3-Sep-2014 |
University: | Anna University |
Completed Date: | 01/10/2013 |
Abstract: | Providing secure service in a web environment is of growing concern and a real challenge in web application security Security remains a major challenge to the entire web especially since the recent sharp increase in remotely exploitable vulnerabilities have been attributed to web application bugs Most of the threats are created through application level vulnerabilities which have been exploited with serious consequences Among the various types of application level vulnerabilities code injection vulnerabilities are widely prevalent Code Injection is a type of exploitation caused by newlineprocessing malicious data input The common code injection vulnerabilities are SQL injection XPath injection Cross site scripting XSS attack and Session hijacking To prevent code injection vulnerabilities a novel mechanism called Web Applications Secure System from Code Injection Vulnerabilities through Web Services is proposed and designed The WAPS CIVS system has four major preventer components such as the SQL injection preventer XPath injection preventer Cross site script attack preventer and session hijacking preventer The SQL injection preventer system of WAPS CIVS contributes to the identification of the invalid SQL statements with vulnerable user input Whenever the user provides the inputs to the web application these inputs are the core part to form the SQL query which will be crafted at application logic and later will run at the data logic to provide the necessary data support newline newline |
Pagination: | xxxii, 202p. |
URI: | http://hdl.handle.net/10603/24523 |
Appears in Departments: | Faculty of Information and Communication Engineering |
Files in This Item:
File | Description | Size | Format | |
---|---|---|---|---|
01_title.pdf | Attached File | 24.04 kB | Adobe PDF | View/Open |
02_certificate.pdf | 388.44 kB | Adobe PDF | View/Open | |
03_abstract.pdf | 15.47 kB | Adobe PDF | View/Open | |
04_acknowledgement.pdf | 6.54 kB | Adobe PDF | View/Open | |
05_contents.pdf | 30.08 kB | Adobe PDF | View/Open | |
06_chapter1.pdf | 1.16 MB | Adobe PDF | View/Open | |
07_chapter2.pdf | 764.44 kB | Adobe PDF | View/Open | |
08_chapter3.pdf | 762.91 kB | Adobe PDF | View/Open | |
09_chapter4.pdf | 648.54 kB | Adobe PDF | View/Open | |
10_chapter5.pdf | 562.73 kB | Adobe PDF | View/Open | |
11_chapter6.pdf | 602.8 kB | Adobe PDF | View/Open | |
12_chapter7.pdf | 1.96 MB | Adobe PDF | View/Open | |
13_chapter8.pdf | 24.69 kB | Adobe PDF | View/Open | |
14_references.pdf | 45.24 kB | Adobe PDF | View/Open | |
15_publications.pdf | 8.83 kB | Adobe PDF | View/Open | |
16_vitae.pdf | 6.07 kB | Adobe PDF | View/Open |
Items in Shodhganga are licensed under Creative Commons Licence Attribution-NonCommercial-ShareAlike 4.0 International (CC BY-NC-SA 4.0).
Altmetric Badge: