Please use this identifier to cite or link to this item: http://hdl.handle.net/2440/112354
Citations
Scopus Web of Science® Altmetric
?
?
Full metadata record
DC FieldValueLanguage
dc.contributor.authorProkhorenko, V.en
dc.contributor.authorChoo, K.en
dc.contributor.authorAshman, H.en
dc.date.issued2016en
dc.identifier.citationIEEE Transactions on Information Forensics and Security, 2016; 11(10):2215-2226en
dc.identifier.issn1556-6013en
dc.identifier.issn1556-6021en
dc.identifier.urihttp://hdl.handle.net/2440/112354-
dc.description.abstractProtecting Web applications is increasingly important due to their high popularity and wide adoption. Therefore, a multitude of protection techniques emerged in effort to secure Web applications, specifically considering valuable and private data commonly processed by such applications. Based on an overview of currently existing protection techniques, a generic and extensible PHP-oriented protection framework is proposed. The concept of application developer intent is introduced and compared with other concepts such as enforced security policies commonly used in existing protection approaches. The proposed framework is mainly focused on application developer intention understanding. Supervising the application execution in real-time makes it possible to detect deviations from the intended behavior and prevent potentially malicious activity. The additional aspects of application behavior, such as database-related communications or generated Web page structure, can be analyzed due to the extensible architecture of the framework.en
dc.description.statementofresponsibilityVictor Prokhorenko, Kim-Kwang Raymond Choo and Helen Ashmanen
dc.language.isoenen
dc.publisherIEEEen
dc.rights© 2016 IEEE. Personal use is permitted, but republication/redistribution requires IEEE permission. See http://www.ieee.org/publications_standards/publications/rights/index.html for more information.en
dc.subjectPHP; intent-based; real-time supervision; web application securityen
dc.titleIntent-based extensible real-time PHP supervision frameworken
dc.typeJournal articleen
dc.identifier.rmid0030086784en
dc.identifier.doi10.1109/TIFS.2016.2569063en
dc.identifier.pubid356672-
pubs.library.collectionComputer Science publicationsen
pubs.library.teamDS14en
pubs.verification-statusVerifieden
pubs.publication-statusPublisheden
Appears in Collections:Computer Science publications

Files in This Item:
There are no files associated with this item.


Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.