Journal of Computer and Communications

Volume 3, Issue 9 (September 2015)

ISSN Print: 2327-5219   ISSN Online: 2327-5227

Google-based Impact Factor: 1.12  Citations  

Systematic Review of Web Application Security Vulnerabilities Detection Methods

HTML  XML Download Download as PDF (Size: 458KB)  PP. 28-40  
DOI: 10.4236/jcc.2015.39004    7,559 Downloads   13,741 Views  Citations

ABSTRACT

In recent years, web security has been viewed in the context of securing the web application layer from attacks by unauthorized users. The vulnerabilities existing in the web application layer have been attributed either to using an inappropriate software development model to guide the development process, or the use of a software development model that does not consider security as a key factor. Therefore, this systematic literature review is conducted to investigate the various security vulnerabilities used to secure the web application layer, the security approaches or techniques used in the process, the stages in the software development in which the approaches or techniques are emphasized, and the tools and mechanisms used to detect vulnerabilities. The study extracted 519 publications from respectable scientific sources, i.e. the IEEE Computer Society, ACM Digital Library, Science Direct, Springer Link. After detailed review process, only 56 key primary studies were considered for this review based on defined inclusion and exclusion criteria. From the review, it appears that no one software is referred to as a standard or preferred software product for web application development. In our SLR, we have performed a deep analysis on web application security vulnerabilities detection methods which help us to identify the scope of SLR for comprehensively investigation in the future research. Further in this SLR considering OWASP Top 10 web application vulnerabilities discovered in 2012, we will attempt to categories the accessible vulnerabilities. OWASP is major source to construct and validate web security processes and standards.

Share and Cite:

Rafique, S. , Humayun, M. , Gul, Z. , Abbas, A. and Javed, H. (2015) Systematic Review of Web Application Security Vulnerabilities Detection Methods. Journal of Computer and Communications, 3, 28-40. doi: 10.4236/jcc.2015.39004.

Cited by

[1] Analisis Validasi File Upload Menggunakan Metadata PNG Pada Aplikasi Berbasis Web
JIKO (Jurnal Informatika Dan …, 2022
[2] Complexity Assessment of Research Space for Smart City Cybersecurity
IFAC-PapersOnLine, 2022
[3] A multivocal literature review on record management potential components in CRUD operation for web application development
International Journal of …, 2022
[4] Blended Security Analysis for Web Applications: Techniques and Tools
2022
[5] Security and Privacy Assurances in Software
2021
[6] 企业应用软件开发安全体系的构建
铁路计算机应用, 2021
[7] Analysis of Security Testing Techniques
Intelligent Automation and Soft Computing, 2021
[8] XGBXSS: An Extreme Gradient Boosting Detection Framework for Cross-Site Scripting Attacks Based on Hybrid Feature Selection Approach and Parameters …
2021
[9] Hashing Generation Using Recurrent Neural Networks For Text Documents
Dmour, M Nachouki… - ICIC Express Letters …, 2021
[10] A Review of Application Challenges of Digital Forensics
2021
[11] Lightweight authentication and key management in mobile-sink for smart IoT-assisted systems
2020
[12] Vulnerabilities Mapping based on OWASP-SANS: A Survey for Static Application Security Testing (SAST)
2020
[13] SEARCH METHODS FOR ABNORMAL ACTIVITIES OF WEB APPLICATIONS
2020
[14] Analisis Validasi Image PNG File Upload menggunakan Metadata pada Aplikasi Berbasis Web
2020
[15] Методы поиска аномальных активностей веб-приложений
2020
[16] Insights on Media Literacy and Social Engineering Vulnerability Predictors: Lifelong Learning Gravity.
Cypriot Journal of …, 2020
[17] Web Applications Security Testing Evaluation
2020
[18] Recurrent Neural Networks for Signature Generation
2020
[19] Insights on media literacy and social engineering vulnerability predictors: Lifelong learning gravity
2020
[20] USE OF “OWASP TOP 10” IN WEB APPLICATION SECURITY
2020
[21] Study on cyber threat perception in the Indian civil aviation sector with respect to Delhi airport
2020
[22] Analysis on Vulnerability Assessment for Web Based Malware
2020
[23] Recommended Practices for the Analysis of Web Application Vulnerabilities
2019
[24] Qualitative Case Study Software Security in DevOps
2019
[25] MLPXSS: An Integrated XSS-Based Attack Detection Scheme in Web Applications Using Multilayer Perceptron Technique
2019
[26] ANALISA KEAMANAN IMAGE JPEG FILE UPLOAD MENGGUNAKAN METADATA DAN GD GRAPHIC LIBRARY PADA APLIKASI BERBASIS WEB
2019
[27] PENYUSUNAN RENCANA PENGUJIAN KEAMANAN APLIKASI BERBASIS WEB
2018
[28] Vulnerabilities and Security of Web Applications
2018
[29] Security Issues in Web Services
Handbook of Research on Network Forensics and Analysis Techniques, 2018
[30] Web Application Vulnerability Assessment Tools Analysis
UMBC Student Collection, 2018
[31] Анализ веб-сервисов на наличие уязвимостей на примере сайта" XI Санкт-Петербургский конгресс" Профессиональное образование, наука и …
2017
[32] АНАЛИЗ ВЕБ-СЕРВИСОВ НА НАЛИЧИЕ УЯЗВИМОСТЕЙ НА ПРИМЕРЕ САЙТА" XI САНКТ-ПЕТЕРБУРГСКИЙ КОНГРЕСС" ПРОФЕССИОНАЛЬНОЕ …
2017
[33] Client Side Countermeasures for the Prevention of SQLIA in Web Applications
2017
[34] Vulnerability Assessment of Some Key Nigeria Government Websites
International Journal of Digital Information and Wireless Communications, 2017
[35] Understanding File Upload Security for Web Applications
International Journal of Engineering Trends and Technology (IJETT), 2016
[36] Web Application Vulnerabilities & Security Models
2015
[37] ЗАШТИТА ВЕБ АПЛИКАЦИЈА ОД ПОЈЕДИНИХ НАПАДА
[38] A Multivocal Literature Review on Records Management Potential Com

Journals Menu
Follow SCIRP
Contact us
+1 323-425-8868
customer@scirp.org
WhatsApp +86 18163351462(WhatsApp)
Click here to send a message to me 1655362766
Paper Publishing WeChat

Copyright © 2024 by authors and Scientific Research Publishing Inc.

Creative Commons License

This work and the related PDF file are licensed under a Creative Commons Attribution 4.0 International License.