Securing PHP written medical websites
Journal Title: Applied Medical Informatics - Year 2019, Vol 41, Issue 0
Abstract
Medical websites, as well as patient data, and user data on medical websites, have to be secured, and effort should be put to increase the privacy of the users. PHP is one of the most used scripting languages for website development. But it is highly criticized from the security point of view. Developers should build medical PHP websites with security in mind, beside their efforts to fulfill the website purpose. The most common attacks, and security issues on PHP websites are: SQL injection attack (where an attacker tries to insert malicious code in the SQL queries); cross-site scripting (where external code is injected in the output of the website); cross-site request forgery (where unwanted commands are injected from a user that the website trusts); session hijacking (where the session ID of the user is stolen); broken authentication and access control; sensitive data exposure; error logging; using components with known vulnerabilities. Their description and ways to mitigate are presented.
Authors and Affiliations
Daniel LEUCUŢA
Keywords
Related Articles
- EP ID EP655045
- DOI -
- Views 78
- Downloads 0
A Health-care Application of Goal-driven Software Design
In this paper we focus on goal engineering by addressing issues such as goal elicitation, specification, structuring and operationalisation. Specification of business goals is regarded as a means to raise the level of ab...
Hybrid Machine Learning Approaches in Viability Assessment of Dental Pulp Stem Cells Treated with Platelet-Rich Concentrates on Different Periods
The unique characteristics of dental pulp stem cells (DPSCs), like multi-lineage differentiation, have attracted considerable interest among clinicians and researchers for the treatment of various diseases. Platelet-deri...
Obesity as a Risk Factor for Biliary Lithiasis - Clinical Study
The purpose of this study is to bring new data regarding the prevalence of biliary lithiasis in our region (Cluj district) and regarding the role of obesity as a risk factor for this pathology. We performed a clinical st...
Road Safety Related Behaviours of Romanian Young People
[i]Aim[/i]: The objective of this study was to assess the behaviors with risk for road traffic injuries among Romanian young people. [i]Material and Method[/i]: Self-administered questionnaires were completed by the stud...
Gender and Diabetes Mellitus Relevance on Outcomes of Coronary Artery Bypass Grafting. A Retrospective Study
Purpose: For the group of patients with coronary artery disease (CAD), referred to coronary artery bypass surgery, we sought to asses the relevance of gender and presence of Diabetes Mellitus upon survival rates, within...