Academia.eduAcademia.edu

Outline

Title
Abstract
Introduction
Patch Code Analysis Guidelines
Results and Discussion
Detailed Vulnerability Analysis
Conclusion
References
All Topics
Computer Science
Software Engineering

Mapping software faults with web security vulnerabilities

Profile image of Marco Antonio Borges VieiraMarco Antonio Borges Vieira

2008, Proceedings of the International Conference on Dependable Systems and Networks

Abstract

Web applications are typically developed with hard time constraints and are often deployed with critical software bugs, making them vulnerable to attacks. The classification and knowledge of the typical software bugs that lead to security vulnerabilities is of utmost importance. This paper presents a field study analyzing 655 security patches ofsix widely used web applications. Results are compared against other field studies on general software faults (i.e., faults not specifically related to security), showing that only a small subset of software fault types is related to security. Furthermore, the detailed analysis of the code of the patches has shown that web application vulnerabilities result from software bugs affecting a restricted collection of statements.

Related papers

An Integrated Approach for Detecting Security Vulnerabilities in Web Applications: A Theoretical Perspective
richard amankwah

International Journal of Computer Applications, 2018

Software security vulnerability is a flaw in a software product that could compromise the integrity, availability, or confidentiality of a software system. The growth and development of software have brought about a corresponding increase in vulnerabilities, which has necessitated the need to develop software security assurance tool that can detect and prevent these vulnerabilities. Previous studies have suggested both commercial and open source tools such as Ashcan, Web Inspect, Web King, Skipfish, and OWASP ZAP just to mention but a few to help mitigate against this security gaps. However, each of this approach has its merits and demerits in detecting vulnerabilities. As a result, this paper seeks to develop a more proactive approach which is a merger or integration of the strength of existing techniques into one system: An integrated web vulnerability detector scanner: which is a software assurance tool for 1 / 4

View PDFchevron_right
Analysis of web application vulnerabilities
Aniruddha S Holey

www.internationaljournalssrg.org, 2017

Nowadays, for digitization mostly web applications are used. All Government Offices, Private sectors, Educational, Banking and E-Business also use web application, that's why the multiple user are also introduced. Web application are accessible and multiple user in worldwide, that's why the security of web application is important. The main concern of the security is required to study the vulnerabilities of the web application. This paper focuses on study and analysis of the multiple types of web application vulnerabilities for systematizing the existing techniques and promotes future research. The analysis and performance of multiple types of attack in web application vulnerabilities.

View PDFchevron_right
Bug, Fault, Error, or Weakness: Demystifying Software Security Vulnerabilities
Irena Bojanova

IT Professional, 2023

In this work, we define the notions of software bug, weakness, and vulnerability in the context of cybersecurity and elucidate their causal relations.

View PDFchevron_right
Rational Unified Treatment for Web application Vulnerability Assessment
anooja joy

2014 International Conference on Circuits, Systems, Communication and Information Technology Applications (CSCITA), 2014

Unified WVA.

View PDFchevron_right
Vulnerability & attack injection for web applications
Marco Aurelio Vieira

Proceedings of the International Conference on Dependable Systems and Networks, 2009

In this paper we propose a methodology to inject realistic attacks in web applications. The methodology is based on the idea that by injecting realistic vulnerabilities in a web application and attacking them automatically we can assess existing security mechanisms. To provide true to life results, this methodology relies on field studies of a large number of vulnerabilities in web applications. The paper also describes a set of tools implementing the proposed methodology. They allow the automation of the entire process, including gathering results and analysis. We used these tools to conduct a set of experiments to demonstrate the feasibility and effectiveness of the proposed methodology. The experiments include the evaluation of coverage and false positives of an Intrusion Detection System for SQL Injection and the assessment of the effectiveness of two Web Application Vulnerability Scanners. Results show that the injection of vulnerabilities and attacks is an effective way to evaluate security mechanisms and tools.

View PDFchevron_right
Security vulnerability categories in major software systems
Yashwant Malaiya

… , Network, and Information …, 2006

The security vulnerabilities in software systems can be categorized by either the cause or severity. Several software vulnerabilities datasets for major operating systems and web servers are examined. The goal is to identify the attributes of each category that can potentially be exploited for enhancing security. Linking a vulnerability type to a severity level can help us prioritize testing to develop more effective testing plans. Instead of using an ad hoc security testing approach, testing can be directed to vulnerabilities with higher risk. ...

View PDFchevron_right
SECURING WEB APPLICATIONS AND FINDING SECURITY VULNERABILITIES IN JAVA
Tejinder Singh

SQL injection and cross-site scripting are two of the most com-mon security vulnerabilities that plague web applications today. These and many others result from having unchecked data input reach security-sensitive operations. This paper describes a language called PQL (Program Query Language) that allows users to declare to specify information flow patterns succinctly and declaratively. We have developed a static context-sensitive, but flowinsensitive information flow tracking analysis that can be used to find all the vulnerabilities in a program. In the event that the analysis gener-ates too many warnings, the result can be used to drive a model-checking system to analyze more precisely. Model checking is also used to automatically generate the input vectors that expose the vulnerability. Any remaining behavior these static analyses have not isolated may be checked dynamically. The results of the static analyses may be used to optimize these dynamic checks.

View PDFchevron_right
WEB SECURITY VULNERABILITY ASSESSMENT AND RECOVERY MACHANISAM
IJESRT Journal

Nowadays web applications have critical logical holes (bug) affecting its security, Thus it makes application as vulnerable and easy to attack by hackers and organized crime. In order to prevent these security problems from occurrence of its maximum importance to understand the typical software faults. This paper contributes the knowledge of widely spread two critical web applications by presenting a field study on most of vulnerabilities like SQL Injection and XSS. By analyzing the security patches of source code which are widely used in web applications written in weak and strong typed languages. In order to understand the way in which these vulnerabilities are really exploited by hackers, and also provides an analysis of the source code of the scripts used to attack them. With the outcomes of this result and its study can be used to train code inspectors and software developers in the detection of such software faults, and also with that outcomes research for realistic vulnerability and attackers can be used to assess security mechanisms, like vulnerability scanners, intrusion detection systems, and static code analyzers. By using various number of software testing techniques tools various level of vulnerability are identified and recovery mechanisms were suggested

View PDFchevron_right
WebKure: A Web Vulnerability Auditor
SDIWC Organization

We live in a period of time where Information Security has gained much attention. The core purpose of the paper is to critically study and analyze the trends in information security as far as the Internet is concerned. To counter the ever rising rates of cyber-crimes, the researcher has come up with a system that scans any target website for the most highly exploited security loophole. The system is a web application that is mainly targeted towards web developers so as to reduce the burden of security mechanism enforcement on them, while developing web content. This, in turn, makes the web a much safer and secure place to exist.

View PDFchevron_right
On the automation of vulnerabilities fixing for web application
MOHD ABDULLAH

2014

Testing Web applications for detection and fixing of vulnerabilities has become an indispensable task in web applications’ development process. This task often consumes a lot of time, efforts and other resources. The research community have devoted considerable amount of efforts to address this problem by proposing many techniques for automated vulnerabilities detection and fix generation for web application. Many of these techniques can reliably detect vulnerabilities and generate fix(es), which can be applied to the web application’s code, by the developer, for possible fixing of the vulnerabilities. Hence, the actual code modifications that fix the vulnerabilities is not automated and has to be carried out manually. To the best of our knowledge, none of the existing automated techniques is able to do this, and hence the actual fixing of the vulnerabilities is left for the human developer to handle. In this paper, we propose a novel framework for automatic vulnerabilities fixing f...

View PDFchevron_right

References (23)

  1. Valeur, F., Mutz, D., Vigna, G.: "A Learning-Based Approach to the Detection ofSQL Attacks", DIMVA 2005
  2. Christey, S., "Unforgivable Vulnerabilities", Black Hat Briefings 2007
  3. Zanero, S., Carettoni, L., Zanchetta, M., "Automatic Detection of Web Application Security Flaws", Black Hat Briefings 2005
  4. David, P., Stroud, R., "Conceptual Model and Architecture of MAFTIA", LAAS-CNRS, 2003
  5. Jovanovic, N., Kruegel, C., Kirda, E., "Precise Alias 1-4244-2398-9/08/$20.00 ©2008 IEEE 266 Analysis for Static Detection of Web Application Vulnerabilities", IEEE Symposium on Security and Privacy, 2006 [6] Vnunet, August, 2007, http://www.vnunet.comlvnunet/news/2197408/monster-kept- breach-secret-five
  6. The Privacy Rights Clearinghouse, December, 2007, http://www.privacyrights.org/ar/ChronDataBreaches.htm
  7. Stock, A., Williams, 1., Wichers, D., "OWASP top 10", OWASP Foundation, July, 2007
  8. Steve, C., Martin, R., "Vulnerability Type Distributions in CVE", Mitre report, May, 2007
  9. Acunetix
  10. Ltd, February 12, 2007, http://www.acunetix.comlnews/security-audit-results.htm
  11. NTA, May, 2007, http://www.nta- monitor.comlposts/2007/05/annualsecurityreport.html
  12. Christmansson, 1., Chillarege, R. "Generation of an Error Set that Emulates Software Faults", Proc. of the 26th IEEE Fault Tolerant Computing Symposium -FCTS-26, 1996.
  13. Chillarege, R., Bhandari, I. S., Chaar, 1. K., Halliday, M. J., Moebus, D., Ray, B., Wong, M., "Orthogonal Defect Classification -A Concept for In-Process Measurement", IEEE Transactions on Software Engineering, vol. 18, no. 11, pp. 943-956, November 1992.
  14. Dudies, 1., Madeira, H., "Emulation of Software Faults: a Field Data Study and a Practical Approach", Transactions on Software Engeneering TSE, 2006.
  15. Maxion, Roy A., Olszewski, Robert T. "Improving Software Robustness with Dependability Cases.", International Symposium on Fault-Tolerant Computing, 1998
  16. Maxion, Roy A., Olszewski, Robert T. "Eliminating Exception Handling Errors with Dependability Cases: A Comparative, Empirical Study.", IEEE Transactions on Software Engineering, 2000
  17. Fonseca, 1., Vieira, M., Madeira, H., "Testing and comparing web vulnerability scanning tools for SQL injection and XSS attacks", The 13th IEEE Pacific Rim International Symposium on Dependable Computing, December 2007.
  18. Nexen.net, February, 2008, http://www.nexen.net/chiffres_cles/phpversion/18164- php_statistics_for_february_2008.php
  19. Mays, R., Jones, C., Holloway, G., Strudinsky, D., "Experiences with defect prevention", IBM syst. J., vol 29, 1990
  20. PHP-Nuke, December, 2007, http://phpnuke.org/
  21. Drupal, December, 2007, http://drupal.org/
  22. PHP-Fusion, December, 2007, http://PHP-Fusion.co.uk/
  23. Wordpress, December, 2007, http://wordpress.org/ [24] phpMyadmin, December, 2007, http://www.phpmyadmin.net/

Related papers

Looking at Web Security Vulnerabilities from the Programming Language Perspective: A Field Study
henrique madeira

2009 20th International Symposium on Software Reliability Engineering, 2009

This paper presents a field study on web security vulnerabilities from the programming language type system perspective. Security patches reported for a set of 11 widely used web applications written in strongly typed languages (Java, C#, VB.NET) were analyzed in order to understand the fault types that are responsible for the vulnerabilities observed (SQL injection and XSS). The results are analyzed and compared with a similar work on web applications written using a weakly typed language (PHP). This comparison points out that some of the types of defects that lead to vulnerabilities are programming language independent, while others are strongly related to the language used. Strongly typed languages do reduce the frequency of vulnerabilities, as expected, but there still is a considerable number of vulnerabilities observed in the field. The characterization of those vulnerabilities shows that they are caused by a small number of fault types. This result is relevant to train programmers and code inspectors in the manual detection of such faults, and to improve static code analyzers to automatically detect the most frequent vulnerable program structures found in the field.

View PDFchevron_right
Using Vulnerability Injection to Improve Web Security
Francesca Matarese

Innovative Technologies for Dependable OTS-Based Critical Systems, 2013

This chapter presents a methodology to evaluate and benchmark web application vulnerability scanners using software fault injection techniques. The most common software faults are injected in the web application source code, which is then checked by the scanners. Using this procedure, we evaluated three leading commercial scanners, which are often regarded as an easy way to test the security of web applications, including critical vulnerabilities such as XSS and SQL Injection. Our idea consists of providing the scanners with the input they are supposed to handle, which is a web application with software faults and possible vulnerabilities originated by such faults. The results of the scanners are compared evaluating the efficiency in identifying the potential vulnerabilities created by the injected fault, their coverage of vulnerability detection and false positives. However, the results show that the coverage of these tools is low and the percentage of false positives is very high.

View PDFchevron_right
Web Application Vulnerabilities: A Survey
himanshu yadav

International Journal of Computer Applications, 2014

In the last few years, the discovery of World Wide Web (WWW) has grown very much. Today, WWW applications are routinely utilized in security critical environments, like ecommerce, medical, financial, and military systems etc. WWW systems are an organization of infrastructure elements, like web databases and servers, and application-specific code, such as HTML scripts and CGI programs etc. While the core elements are usually developed by knowledgeable programmers with valid security skills this ensuing vulnerable web-based applications and accessible to the complete web, creating easilyabusing access points for the conciliation of entire networks. During this paper, we survey the current approaches to internet vulnerability analysis and that we propose a classification along two characterizing: detection and prevention model and study these methods. Furthermore we describe the foremost regular attacks in contrast to web-based applications and explore the effectiveness of sure analysis techniques in characteristic specific categories of flaws.

View PDFchevron_right
Static analysis for detecting taint-style vulnerabilities in web applications
Nenad Jovanovic

Journal of Computer Security, 2010

View PDFchevron_right
Analysis of the Effect of Java Software Faults on Security Vulnerabilities and Their Detection by Commercial Web Vulnerability Scanner Tool
Mario Jino

2010

Most software systems developed nowadays are highly complex and subject to strict time constraints, and are often deployed with critical software faults. In many cases, software faults are responsible for security vulnerabilities which are exploited by hackers. Automatic web vulnerability scanners can help to locate these vulnerabilities. Trustworthiness of the results that these tools provide is important; hence, relevance of the results must be assessed. We analyze the effect on security vulnerabilities of Java software faults injected on source code of Web applications. We assess how these faults affect the behavior of the scanner vulnerability tool, to validate the results of its application. Software fault injection techniques and attack trees models were used to support the experiments. The injected software faults influenced the application behavior and, consequently, the behavior of the scanner tool. High percentage of uncovered vulnerabilities as well as false positives points out the limitations of the tool.

View PDFchevron_right

Related topics

  • Information Systems
  • Web Security
  • Software Fault Tolerance
  • Software Bugs
  • Typical Development
  • Application Software
    • 580 California St., Suite 400
    San Francisco, CA, 94104
    © 2025 Academia. All rights reserved