A Parallel-SQLIA Detector for Web Security

Kumar, Pankaj; Katti, C. P.

doi:10.5815/ijieeb.2016.02.08

Cited by 2 publications

(2 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Parallel-SQLIA detector simply keeps the information of hot queries and skips the repeated verification; therefore improve the system performance in terms of execution time. [10] Amor Lazzez and Thabet Slimani in their paper have presented a detailed overview about the web application forensics. First, we defined the web applications forensics as a sub-class of the digital forensics.…”

Section: Related Workmentioning

confidence: 99%

Building Secure Web-Applications Using Threat Model

M¹,

Niaz²

2018

IJITCS

View full text Add to dashboard Cite

Abstract-Ensuring security in web based applications is one of the key issues nowadays. The processes of designing and building a web site have changed. As the online transactions are increasing, increase in type and number of attacks have been observed regarding security of online payment systems. Generally used web development methodologies do not assure security as an umbrella activity. Moreover appropriate threat modeling is also not being conducted against web security objectives. Need of the hour is to have a comprehensive and simple to use web development methodology which caters security throughout the WDLC for web based solutions.

show abstract

Section: Related Workmentioning

confidence: 99%

Building Secure Web-Applications Using Threat Model

M¹,

Niaz²

2018

IJITCS

View full text Add to dashboard Cite

show abstract

“…In addition, some mitigation technique which called SQLIA detectors. Those detectors could detect vulnerable source of SQLi [22].…”

mentioning

confidence: 99%

Security Analysis of Government & Financial Websites of Bangladesh

Masum¹,

Sachcha²,

Nayem³

2022

IJEME

View full text Add to dashboard Cite

The vision 2021 of Bangladesh had to transform into a digital country, where the digital platform was a significant part of it. To make a digital platform, the Bangladesh government announced plans to build web applications in government, non-government, financial, educational and other sectors. By increasing the number of websites, the security risk is growing because of vulnerable coding practices. If those security risks are not fixed, attackers could exploit these vulnerabilities and perform various malpractices like data breaches, injected spam content, spreading viruses, malicious redirects, Denial-of-service, or even website defacements. This paper focuses on vulnerability assessment on Bangladeshi government and financial websites to show the security posture of these sites. This study scanned and analyzed four types of risk alerts High, Medium, Low and Informational using Acunetix and ZAP tools. In addition, the selected top five vulnerabilities are CJ, MC, CSRF, ID and XSS in terms of single vulnerability-type detected for targeted websites. The report has described representing the security condition of Bangladesh official websites. Also, it provided mitigation techniques for these vulnerabilities to avoid security risk, which is less discussed in this country.

show abstract

A Parallel-SQLIA Detector for Web Security

Cited by 2 publications

References 11 publications

Building Secure Web-Applications Using Threat Model

Building Secure Web-Applications Using Threat Model

Security Analysis of Government & Financial Websites of Bangladesh

Contact Info

Product

Resources

About