A Metamodel for Web Application Injection Attacks and Countermeasures

机译：Web应用程序注入攻击的元模型和对策

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

Web application injection attacks such as cross site scripting and SQL injection are common and problematic for enterprises. In order to defend against them, practitioners with large heterogeneous system architectures and limited resources struggle to understand the effectiveness of different countermeasures under various conditions. This paper presents an enterprise architecture metamodel that can be used by enterprise decision makers when deciding between different countermeasures for web application injection attacks. The scope of the model is to provide low-effort guidance on an abstraction level of use for an enterprise decision maker. This metamodel is based on a literature review and revised according to the judgment by six domain experts identified through peer-review.

机译：Web应用程序注入攻击（例如跨站点脚本和SQL注入）对于企业来说是常见且成问题的。为了防御它们，具有大型异构系统架构和有限资源的从业人员努力了解各种条件下不同对策的有效性。本文提出了一种企业体系结构元模型，企业决策者可以在决定Web应用程序注入攻击的不同对策之间使用。该模型的范围是为企业决策者的抽象使用级别提供省力的指导。该元模型基于文献综述，并根据通过同行评审确定的六位领域专家的判断进行了修订。

著录项

来源
《Trends in enterprise architecture research and Practice-driven research on enterprise transformation》|2012年|198-217|共20页
会议地点 Barcelona(ES);Barcelona(ES);Barcelona(ES);Barcelona(ES);Barcelona(ES)
作者
Hannes Holm; Mathias Ekstedt;
展开▼
作者单位

Industrial Information and Control Systems Royal Institute of Technology Osquldas vaeg 10,100 44 Stockholm, Sweden;

Industrial Information and Control Systems Royal Institute of Technology Osquldas vaeg 10,100 44 Stockholm, Sweden;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类
关键词
cyber security; web applications; enterprise architecture.;

机译：网络安全;网络应用程序；企业架构。;

相似文献

外文文献
中文文献
专利

1. Investigation framework of web applications vulnerabilities, attacks and protection techniques in structured query language injection attacks [J] . Nabeel Salih Ali International journal of wireless and mobile computing . 2018,第2期

机译：结构化查询语言注入攻击中Web应用程序漏洞，攻击和保护技术的调查框架
2. SQL INJECTION ATTACK IN WEB APPLICATION AND ITS MITIGATION USING PREVENTION MECHANISM TO SECURE WEB APPLICATION DATABASE [J] . Mital Parekh, Mr. Chandresh Parekh International Journal on Computer Science and Engineering . 2019,第4期

机译：使用预防机制保护Web应用程序数据库中Web应用程序中的SQL注入攻击及其缓解
3. An Effective Control Report Based Security Countermeasure against the Joint Attacks of False Report Injection Attack and Selective Forwarding Attack [J] . Hyun Woo Lee, Tae Ho Cho Wireless Sensor Network . 2012,第8期

机译：一种基于有效控制报告的安全措施，防范虚假报告注入攻击与选择性转发攻击的联合攻击
4. A Metamodel for Web Application Injection Attacks and Countermeasures [C] . Hannes Holm, Mathias Ekstedt Working conference on practice-driven research on enterprise transformation . 2012

机译：用于网施用注射攻击的元模型及对策
5. A unified cyber-enhanced approach for detecting cross-site scripting attacks on Web applications [D] . Gurijala, Bhanukiran 2016

机译：一种用于检测Web应用程序上跨站点脚本攻击的统一的网络增强方法
6. Vulnerability Assessment of IPv6 Websites to SQL Injection and Other Application Level Attacks [O] . Ying-Chiang Cho, Jen-Yi Pan 2013

机译：IPv6网站对SQL注入和其他应用程序级别攻击的漏洞评估
7. A metamodel for web application injection attacks and countermeasures [O] . Holm, Hannes, Ekstedt, Mathias 2012

机译：Web应用程序注入攻击的元模型和对策

A Metamodel for Web Application Injection Attacks and Countermeasures

摘要

著录项

相似文献

相关主题

期刊订阅