English  |  正體中文  |  简体中文  |  Post-Print筆數 : 27 |  Items with full text/Total items : 95906/126496 (76%)
Visitors : 31670293      Online Users : 445
RC Version 6.0 © Powered By DSPACE, MIT. Enhanced by NTU Library IR team.
Scope Tips:
  • please add "double quotation mark" for query phrases to get precise results
  • please goto advance search for comprehansive author search
  • Adv. Search
    HomeLoginUploadHelpAboutAdminister Goto mobile version
    政大機構典藏 > 商學院 > 資訊管理學系 > 會議論文 >  Item 140.119/75845
    Please use this identifier to cite or link to this item: http://nccur.lib.nccu.edu.tw/handle/140.119/75845

    Title: Patcher: An online service for detecting, viewing and patching web application vulnerabilities
    Authors: Yu, Fang;Tung, Yi Yang
    Contributors: 資管系
    Keywords: Flow visualization;Network security;Open source software;Systems science;Three dimensional computer graphics;Visualization;Web services;Websites;Open source application;Program comprehension;Program visualization;String analysis;Visualization environment;Web application security;Web application vulnerability;WEB security;Applications
    Date: 2014-02
    Issue Date: 2015-06-16 15:55:11 (UTC+8)
    Abstract: Web application security becomes a critical issue as more and more web applications appear and serve common life and business routines in recent years. It is known that web applications are vulnerable due to software defects. Open to public users, vulnerable websites may encounter lots of malicious attacks from the Internet. We present a new web service platform where system developers can detect, view and patch potential vulnerabilities of their web applications online. Taking advantage of static string analysis techniques, our analysis ensures that the patched programs are free from vulnerabilities with respect to given attack patterns. Specifically, we integrate the service front end with program visualization techniques, developing a 3D interface/presentation for users to access and view the analysis result under visualization environment with the aim of improving users' comprehension on programs, especially how vulnerabilities get exploited and patched. We report our analysis result on several open source applications, finding and patching various unknown/known vulnerabilities. © 2014 IEEE.
    Relation: Proceedings of the Annual Hawaii International Conference on System Sciences, 2014, 論文編號 6759201, Pages 4878-4886, 47th Hawaii International Conference on System Sciences, HICSS 2014; Waikoloa, HI; United States; 6 January 2014 到 9 January 2014; 類別編號E2504; 代碼 105660
    Data Type: conference
    DOI 連結: http://dx.doi.org/10.1109/HICSS.2014.598
    DOI: 10.1109/HICSS.2014.598
    Appears in Collections:[資訊管理學系] 會議論文

    Files in This Item:

    File Description SizeFormat

    All items in 政大典藏 are protected by copyright, with all rights reserved.

    社群 sharing

    DSpace Software Copyright © 2002-2004  MIT &  Hewlett-Packard  /   Enhanced by   NTU Library IR team Copyright ©   - Feedback