EnglishSvenskaNorsk
Ändra sökning
RefereraExporteraLänk till posten
Permanent länk

Direktlänk
Referera
Referensformat
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annat format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annat språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf
WEB APPLICATION SECURITY IN THE JAVA ENVIRONMENT
Blekinge Tekniska Högskola, Sektionen för datavetenskap och kommunikation.
2012 (Engelska)Självständigt arbete på grundnivå (kandidatexamen)Studentuppsats (Examensarbete)
Abstract [en]

This project focuses on web security. Some of the most famous vulnerabilities, known troubling web applications. Has been collected and analyzed. Each vulnerability collected in this project, was exploited and secured. Demon- strations from a web application prototype, developed for this project. Brings real examples for each vulnerability, both secured, and insecured. The proto- type ran on a Tomcat web server, and was developed with frameworks such as Web, Spring and Hibernate. Connected to one PostgreSQL data source. All vulnerabilities was successfully implemented in Spring framework, and they were all exploited. Every vulnerability was also secured, with different tools and methods from earlier mentioned frameworks. As a result, real examples from the prototype is used for demonstration in the project, both in a secure and an insecure state. The result views Spring as a framework with good security potential. Most of the Spring specific vulnerabilities, are logical design flaws from developers that can be avoided. Vulnerabilities not related to Spring, such as the one collected for this project. Could be prevented by using methods from the Spring framework or intelligent programming. Which leads to conclusions. Web applications are always exposed to attacks, no matter the framework in use. Creative hackers search to discover new vul- nerabilities, and update old ones all the time. Developers has a responsibility, towards the web applications users. Web applications can not just developed for normal use, but also against possible misuse. Frameworks with good reputation and well processed models, is a good ground for developing a secure application.
Ort, förlag, år, upplaga, sidor
2012. , s. 61
Nyckelord [en]
Web, Spring, Security, Application, Exploit, Vulnerabilities, Secure
Nationell ämneskategori
Datavetenskap (datalogi) Programvaruteknik
Identifikatorer
URN: urn:nbn:se:bth-2370Lokalt ID: oai:bth.se:arkivex01BB457A282DCD22C1257A3800564E83OAI: oai:DiVA.org:bth-2370DiVA, id: diva2:829642
Uppsök
teknik
Handledare
Tillgänglig från: 2015-04-22 Skapad: 2012-07-11 Senast uppdaterad: 2025-09-30Bibliografiskt granskad

Open Access i DiVA

fulltext(1485 kB)1032 nedladdningar
Filinformation
Filnamn FULLTEXT01.pdfFilstorlek 1485 kBChecksumma SHA-512
469da10f0942dfcf22e8b77333e489724b07474ca30478598b578f073ae2c0ccdcc2c1adc21b5ab2394c01f7bb383c8d258baf9be43588a82e1de5ae927ef3d6
Typ fulltextMimetyp application/pdf

Av organisationen
Sektionen för datavetenskap och kommunikation
Datavetenskap (datalogi)Programvaruteknik

Sök vidare utanför DiVA

GoogleGoogle Scholar
Totalt: 1032 nedladdningar
Antalet nedladdningar är summan av nedladdningar för alla fulltexter. Det kan inkludera t.ex tidigare versioner som nu inte längre är tillgängliga.

urn-nbn

Altmetricpoäng

urn-nbn
Totalt: 625 träffar
RefereraExporteraLänk till posten
Permanent länk

Direktlänk
Referera
Referensformat
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annat format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annat språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf
v. 2.47.0
|
WCAG
|
BTHs bibliotek
|
Publicera
|
Hur jag publicerar/registrerar
|
Diva portal
|
SwePub
|
Uppsök