Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
HTML5 Web application security with OWASP
Blekinge Institute of Technology, School of Computing.
Blekinge Institute of Technology, School of Computing.
2013 (English)Independent thesis Basic level (degree of Bachelor)Student thesisAlternative title
HTML5 Webbapplikation säkerhet med OWASP (Swedish)
Abstract [en]

HTML5 has gained a lot of interest the last couple of years from web developers. HTML5 is the new upcoming standard for HTML set to be released in the end of 2014 (W3C). In this report HTML5 is reviewed in order to determine if it has made web applications more secure. This is done with information study and the use of experimental test cases. We use the latest OWASP top ten list of security risks in web applications as a benchmark. As a result we found ve correlations between OWASP top ten list and HTML5 functionality. The results clearly indicates that HTML5 is a ecting web application security. The security risks that was successfully exploited is Cross-site scripting, Security Miscon guration, Sensitive Data Exposure, Cross-site request forgery and Unvalidated redirects and forwards. We suggest countermeasures for the tests performed and discuss how developers should have security in mind when it comes to developing with HTML5.

Place, publisher, year, edition, pages
2013. , 51 p.
Keyword [en]
HTML5, OWASP, W3C, WHATWG
National Category
Computer Science Information Systems
Identifiers
URN: urn:nbn:se:bth-2074Local ID: oai:bth.se:arkivexA3AE038D51ACF370C1257BAD0051B127OAI: oai:DiVA.org:bth-2074DiVA: diva2:829338
Uppsok
Technology
Supervisors
Available from: 2015-04-22 Created: 2013-07-19 Last updated: 2015-06-30Bibliographically approved

Open Access in DiVA

fulltext(1027 kB)743 downloads
File information
File name FULLTEXT01.pdfFile size 1027 kBChecksum SHA-512
046be3286b57a282864c88d53c45ebcf7755908efcb5d7657511936b31560dc7b2ee673a2e30f838afd5546dc70376ae441bcc5e61e7061babe7389ef9d75305
Type fulltextMimetype application/pdf

Search in DiVA

By author/editor
Nilsson, Daniel
By organisation
School of Computing
Computer ScienceInformation Systems

Search outside of DiVA

GoogleGoogle Scholar
Total: 743 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

Total: 1443 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf