As the World Wide Web continues to evolve, the number of web-based attacks that target web applications is on the rise. Attacks such as Cross-site Scripting (XSS), SQL Injection and Cross-site Request Forgery (XSRF) are among the topmost threats on the Web, and defending against these attacks is a growing concern. In this paper, we describe WebAppArmor, a framework that is aimed at preventing these attacks on existing (legacy) web applications. The main feature of this framework is that it offers a unified perspective to address these problems in the context of existing web applications. The framework incorporates techniques based on static and dynamic analysis, symbolic evaluation and execution monitoring to retrofit existing web applications to be resilient to these attacks. © 2010 Springer-Verlag.
CITATION STYLE
Venkatakrishnan, V. N., Bisht, P., Ter Louw, M., Zhou, M., Gondi, K., & Ganesh, K. T. (2010). WebAppArmor: A framework for robust prevention of attacks on web applications (invited paper). In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 6503 LNCS, pp. 3–26). https://doi.org/10.1007/978-3-642-17714-9_2
Mendeley helps you to discover research relevant for your work.