Free Online Productivity Tools
i2Speak
i2Symbol
i2OCR
iTex2Img
iWeb2Print
iWeb2Shot
i2Type
iPdf2Split
iPdf2Merge
i2Bopomofo
i2Arabic
i2Style
i2Image
i2PDF
iLatex2Rtf
Sci2ools
OTM
2007
Springer
2007
Springer
Prevention of Cross-Site Scripting Attacks on Current Web Applications
Security is becoming one of the major concerns for web applications and other Internet based services, which are becoming pervasive in all kinds of business models and organizations. Web applications must therefore include, in addition to the expected value offered to their users, reliable mechanisms to ensure their security. In this paper, we focus on the specific problem of preventing cross-site scripting attacks against web applications. We present a study of this kind of attacks, and survey current approaches for their prevention. The advantages and limitations of each proposal are discussed, and an alternative solution is introduced. Our proposition is based on the use of X.509 certificates, and XACML for the expression of authorization policies. By using our solution, developers and/or administrators of a given web application can specifically express its security requirements from the server side, and require the proper enforcement of such requirements on a compliant client. ...
Real-time TrafficCross-site Scripting Attacks | Internet Based Services | Internet Technology | OTM 2007 | Web Applications |
Related Content
| Added | 08 Jun 2010 |
| Updated | 08 Jun 2010 |
| Type | Conference |
| Year | 2007 |
| Where | OTM |
| Authors | Joaquín García-Alfaro, Guillermo Navarro-Arribas |
Comments (0)
Researcher Info
|
