Vulnerabilities of Modern Web Applications
The result's identifiers
Result code in IS VaVaI
<a href="https://www.isvavai.cz/riv?ss=detail&h=RIV%2F00216275%3A25530%2F17%3A39910668" target="_blank" >RIV/00216275:25530/17:39910668 - isvavai.cz</a>
Result on the web
<a href="http://dx.doi.org/10.23919/MIPRO.2017.7973616" target="_blank" >http://dx.doi.org/10.23919/MIPRO.2017.7973616</a>
DOI - Digital Object Identifier
<a href="http://dx.doi.org/10.23919/MIPRO.2017.7973616" target="_blank" >10.23919/MIPRO.2017.7973616</a>
Alternative languages
Result language
angličtina
Original language name
Vulnerabilities of Modern Web Applications
Original language description
The security of modern web applications is becoming increasingly important with their growing usage. As millions of people use these services, the availability, integrity, and confidentiality are critical. This paper describes the process of penetration testing of these applications. The goal of such testing is to detect application flaws and vulnerabilities and to propose a solution to mitigate them. The paper analyses current penetration testing tools and subsequently tests them on a use case web application, build specifically with present security flaws. The process of penetration testing is described in detail and the performance of each tool is evaluated. In the last section, recommended practices to mitigate found flaws are summarized.
Czech name
—
Czech description
—
Classification
Type
D - Article in proceedings
CEP classification
—
OECD FORD branch
10201 - Computer sciences, information science, bioinformathics (hardware development to be 2.2, social aspect to be 5.8)
Result continuities
Project
—
Continuities
S - Specificky vyzkum na vysokych skolach
Others
Publication year
2017
Confidentiality
S - Úplné a pravdivé údaje o projektu nepodléhají ochraně podle zvláštních právních předpisů
Data specific for result type
Article name in the collection
40th International Convention on Information and Communication Technology, Electronics and Microelectronics, MIPRO 2017 : proceedings
ISBN
978-953-233-092-2
ISSN
—
e-ISSN
neuvedeno
Number of pages
7
Pages from-to
"1256 "- 1261
Publisher name
IEEE (Institute of Electrical and Electronics Engineers)
Place of publication
New York
Event location
Opatija
Event date
May 22, 2017
Type of event by nationality
EUR - Evropská akce
UT code for WoS article
000426903800220