Abstract
|
Article Information:
Improving Web Application Security Using Penetration Testing
D. SriNithi, G. Elavarasi, T.F. Michael Raj and P. Sivaprakasam
Corresponding Author: D. SriNithi
Submitted: May 09, 2014
Accepted: June 16, 2014
Published: August 05, 2014 |
Abstract:
|
The main issues of current web application is easily hacking the user information by unauthorized person. The development of entire web application depends on scripting languages that easily displays the user authentication code to the web browser. All code must be transferred through query string parameter (URL) of the web application. This kind of application security fails when verifying it by penetration testing which is based on XSS languages. This study overcomes the security issues by developing a web application based on cross site scripting technique which the user codes are encrypted using RSA algorithm and cookies, cross domain verification based on encrypted use code. XSS vulnerabilities come in different forms and may be categorized into two varieties: reflected and stored. Reflected is on type of attack which can be performed against applications that employ a dynamic page error message to users. Stored XSS vulnerability appears when data submitted by one user is store in the application or in the back-end database. The user cookies of the web browser store only the encrypted key values. These techniques applied in Enterprise web application it support multiple organization for processing product purchase order, sales order and invoice details.
Key words: Penetration testing, security issues, threats in web applications, web application testing, , , ,
|
Abstract
|
PDF
|
HTML |
|
Cite this Reference:
D. SriNithi, G. Elavarasi, T.F. Michael Raj and P. Sivaprakasam, . Improving Web Application Security Using Penetration Testing. Research Journal of Applied Sciences, Engineering and Technology, (5): 658-663.
|
|
|
|
|
ISSN (Online): 2040-7467
ISSN (Print): 2040-7459 |
|
Information |
|
|
|
Sales & Services |
|
|
|