Regresar

Implementation of techniques, standards and safety recommendations to prevent XSS and SQL injection attacks in Java EE RESTful applications

Abstract:

There are recommendations and tools, given by OWASP that suggest basic techniques of prevention and protection of computer attacks over web applications where the common types of attacks are XSS and SQL Injection; for that reasons, we apply recommendations and good practice to minimize this kind of attacks; used some tools to validate automatically attacks and built some expressions to validate manually the intrusions in web applications. Therefore, this study was based on the development of a prototype under REST, design pattern Facade, Java EE and Glassfish [13].With the development of the prototype it was found that by the use of standards and norms recommend by OWASP the security in terms of overall design and source code in web applications can be greatly improved.

Año de publicación:

2016

Keywords:

  • REST
  • SQL injection
  • OWASP
  • XSS

Fuente:

scopusscopus
rraaerraae
googlegoogle

Tipo de documento:

Conference Object

Estado:

Acceso restringido

Áreas de conocimiento:

  • Ingeniería de software
  • Software

Áreas temáticas:

  • Ciencias de la computación

Contribuidores:

Franco GuamánFranco Guamán
Roddy A. CorreaRoddy A. Correa
Daniel GuamánDaniel Guamán
Danilo Jaramillo HurtadoDanilo Jaramillo Hurtado
Daniel Alejandro Guaman CoronelDaniel Alejandro Guaman Coronel
Roddy Andrés Correa TenesacaRoddy Andrés Correa Tenesaca
F. Guaman BastidasF. Guaman Bastidas
R. Correa QuezadaR. Correa Quezada
D. Guaman CoronelD. Guaman Coronel
D Jaramillo HurtadoD Jaramillo Hurtado