Toward Secure Web Application Design: Comparative Analysis of Major Languages and Framework Choices
Journal Title: International Journal of Advanced Computer Science & Applications - Year 2016, Vol 7, Issue 2
Abstract
We will examine the benefits and drawbacks in the selection of various software development languages and web application frameworks. In particular, we will consider five of the ten threats outlined in the Open Web Application Security Project (OWASP) Top 10 list of the most critical Web application security flaws [12], and examine the role of three popular Web application frameworks (Ruby on Rails (Ruby), Play Framework (Scala), and Zend Framework 2 (PHP)) in addressing a selection of these major threats. In addition, we will compare the strengths and weaknesses of each Web application framework as it pertains to the implementation of strong security measures. Furthermore, for each framework examined, assess how an organization should address these security threats in their software design utilizing their framework of choice. We will suggest the direction in which an organization facing such a decision ought to head; moreover, facilitate such a decision by assessing the benefits and drawbacks of each, based on the findings; and encourage one to decide what works best for the organization’s technical direction.
Authors and Affiliations
Stephen Tipton, Young Choi
Keywords
Related Articles
- EP ID EP95921
- DOI 10.14569/IJACSA.2016.070206
- Views 101
- Downloads 0
New Mathematical Modeling of Three-Level Supply Chain with Multiple Transportation Vehicles and Different Manufacturers
Nowadays, no industry can move in global markets individually and independently of competitors because they are part of a supply chain and the success of each member of the chain influences the others. In this paper, the...
E-shape Multiband Patch Antenna for 4G, C-band and S-band Applications
In this study, a new E shape mounted on minowaki island patch antenna on FR4 substrate is presented for communication systems applications. With insertion of shortening pin between patch and ground plane, the proposed st...
Multilingual Artificial Text Extraction and Script Identification from Video Images
This work presents a system for extraction and script identification of multilingual artificial text appearing in video images. As opposed to most of the existing text extraction systems which target textual occurrences...
A Modified Feistel Cipher Involving Substitution, Shifting of rows, Mixing of columns, XOR operation with a Key and Shuffling
In this paper, we have developed a modification to the Feistel cipher by taking the plaintext in the form of a pair of matrices and introducing a set of functions namely, substitute, shifting of rows, mixing of columns a...
Laguerre Kernels –Based SVM for Image Classification
Support vector machines (SVMs) have been promising methods for classification and regression analysis because of their solid mathematical foundations which convey several salient properties that other methods hardly prov...