DocumentCode :
2595682
Title :
Analysis of Web Security Comprehensive Evaluation Tools
Author :
Shi, Hui-Zhong ; Chen, Bo ; Yu, Ling
Author_Institution :
Sch. of Comput. Sci. & Technol., Nanjing Normal Univ., Nanjing, China
Volume :
1
fYear :
2010
fDate :
24-25 April 2010
Firstpage :
285
Lastpage :
289
Abstract :
Web security evaluation is an important way for resolving Web security. This paper introduces the commonly used Web security comprehensive evaluation tools. Application examples and the comparison of their abilities are also given. Some inherent flaws in these tools which use the completely automatic method are analyzed. On this basis, we integrate black box and white box testing and propose a generic framework of Web security evaluation. As well as we propose ability criteria for this framework and the evaluation management methods in the application process.
Keywords :
security of data; Web security; black box testing; comprehensive evaluation tools; evaluation management methods; white box testing; Application software; Communication system security; Computer networks; Computer security; Data security; Information security; Internet; Operating systems; System testing; Web server; Web security; Web security evaluation; ability criteria; comprehensive evaluation tool;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Networks Security Wireless Communications and Trusted Computing (NSWCTC), 2010 Second International Conference on
Conference_Location :
Wuhan, Hubei
Print_ISBN :
978-0-7695-4011-5
Electronic_ISBN :
978-1-4244-6598-9
Type :
conf
DOI :
10.1109/NSWCTC.2010.72
Filename :
5480685
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=2595682
بازگشت