2005
DOI: 10.1016/j.comnet.2005.01.003
|View full text |Cite
|
Sign up to set email alerts
|

A testing framework for Web application security assessment

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
1
1
1
1

Citation Types

0
28
0

Year Published

2011
2011
2020
2020

Publication Types

Select...
4
4

Relationship

0
8

Authors

Journals

citations
Cited by 58 publications
(28 citation statements)
references
References 35 publications
0
28
0
Order By: Relevance
“…All of these tests are possible through appropriate test scripts. For instance if a test script for assessing SQL injection is available (for instance using the idea presented in [13]) then this test script can be used to perform a security test. Therefore, the main issue is how to represent the logic of a test in a test script.…”
Section: Discussionmentioning
confidence: 99%
See 2 more Smart Citations
“…All of these tests are possible through appropriate test scripts. For instance if a test script for assessing SQL injection is available (for instance using the idea presented in [13]) then this test script can be used to perform a security test. Therefore, the main issue is how to represent the logic of a test in a test script.…”
Section: Discussionmentioning
confidence: 99%
“…In [13] a framework is discussed for testing security of the web-based systems. The framework is developed to address two types of security attacks; SQL injection and XSS attacks.…”
Section: Related Workmentioning
confidence: 99%
See 1 more Smart Citation
“…Prior work has also addressed the performance of web security vulnerability scanners by either evaluating the detection effectiveness of a set of scanners [18,19,32,58] or developing techniques that can be incorporated into these tools to increase their detection accuracy [5,60,61]. Other research attempts focused on comparing the effectiveness of dynamic testing with other security testing approaches (e.g., static testing or manual code review) [62].…”
Section: Web Security Scanners: Detection Effectivenessmentioning
confidence: 99%
“…The secure host and secure application are the most important concerns in the web security. However, when network and host-level entry points are relatively secure, the public interfaces of Web applications become the focus of attacks [1]. Hence, a trustable application and host could provide an appropriate infrastructure for online applications.…”
Section: Introductionmentioning
confidence: 99%