EVALUATION OF THE EFFECTIVENESS OF SECURITY TESTING TECHNOLOGY
Journal Title: Вчені записки Таврійського національного університету імені В. І. Вернадського. Серія: Технічні науки - Year 2018, Vol 29, Issue 2
Abstract
In this work, the studies were conducted on the effectiveness of the developed technology of application security testing. The technology offered by the author for application security testing includes a set of mathematical models of testing technology for WEB applications. The basis of mathematical modeling is the approach of GERT-network synthesis. As a result, mathematical models of testing technology for DOM XSS vulnerability and SQL injections have been developed. In addition, the application security testing technology proposed by the author includes a simulation model of security testing technology based on the theory of scaling of simulation models. A distinctive feature of the developed simulation model is the adaptation of the choice of input control operators and data to an increase in the requirements for the rapid development and implementation of the model, expressed in the implementation of the procedure for interacting with a real browser using browser automation tools and generating attack data in several dialects. In this work, the reliability of the results of mathematical modeling is estimated.
Authors and Affiliations
О. В. Коваленко
Keywords
Related Articles
- EP ID EP577422
- DOI -
- Views 83
- Downloads 0
DEFECATE OF SUGAR PRODUCTION: CHEMICAL REACTION OF COMPLEX PROCESSING
At first, reactions of defecate of sugar production with acid oxides MoO3, WO3 (І) and phosphate acid H3PO4 (ІІ) were investigated with methods of chemical analysis, pH-measuring, thermogravimeasuring and X-rays. In the...
ANALYSIS OF TECHNICAL AND ECONOMIC INDICATORS OF PLOWING LAND PLOTS OF TRACTORS OF VARIOUS CAPACITY
The work is devoted to the analysis of efficiency of soil tillage by tractors of different productive capacity. The resulted technique of definition of economically proved optimal quantity of agricultural machinery and t...
FEATURES OF RISK MANAGEMENT IN IMPLEMENTATION OF COMPUTERIZED SYSTEM AT PHARMACEUTICAL ENTERPRISES
One of the urgent, but not sufficiently considered in the scientific literature, is the assessment of risks in the implementation of the computerized system. Based on the review of regulatory requirements, an approach to...
PRINCIPLES OF SYNTHESIS OF MOBILE ROBOTS
The paper proposes three basic principles for the synthesis of mobile robots: the accumulation and conversion of energy, the integration of motion drives and the use of a generator of reactive pneumatic traction. These t...
THE MATHEMATICAL ENGINEERING FOR THE APPLIED EXPERT SYSTEMS
The theoretical aspects of the use of methods of mathematical modeling, optimization and planning of the experiment for the adjustment of technological parameters in production are considered in the paper. The article ai...