Cost-Effective and Active Security Verification Framework for Web Application Vulnerabilities

KyungHyun Han; Trong-Kha Nguyen; Hun Joe; Seong Oun Hwang; Chaeho Lim

Cost-Effective and Active Security Verification Framework for Web Application Vulnerabilities

KIPS Transactions on Computer and Communication Systems, Vol. 5, No. 8, pp. 189-196, Aug. 2016

10.3745/KTCCS.2016.5.8.189, PDF Download:

Keywords: Cost-Effective, Web security, Vulnerabilities, Inspection
Abstract

Many companies have struggled to manage Web vulnerabilities and security incidents have also frequently happened. The current inspection methods are mainly based on the OWASP vulnerabilities. In practice, however, it is very difficult to cope with frequent changes of Web applications. In this paper, we first investigate the existing quantification of Web application vulnerabilities and verification process. Then we propose an improved inspection framework which is focused on removing essential and realistic vulnerabilities and active verification process.

Statistics

Show / Hide Statistics

Statistics (Cumulative Counts from September 1st, 2017)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.

Cite this article

[IEEE Style]

K. Han, T. Nguyen, H. Joe, S. O. Hwang, C. Lim, "Cost-Effective and Active Security Verification Framework for Web Application Vulnerabilities," KIPS Transactions on Computer and Communication Systems, vol. 5, no. 8, pp. 189-196, 2016. DOI: 10.3745/KTCCS.2016.5.8.189.

[ACM Style]

KyungHyun Han, Trong-Kha Nguyen, Hun Joe, Seong Oun Hwang, and Chaeho Lim. 2016. Cost-Effective and Active Security Verification Framework for Web Application Vulnerabilities. KIPS Transactions on Computer and Communication Systems, 5, 8, (2016), 189-196. DOI: 10.3745/KTCCS.2016.5.8.189.