| 网络应用软件的几个安全问题分析 |
| |
| 引用本文: | 胡世昌. 网络应用软件的几个安全问题分析[J]. 沈阳师范大学学报(自然科学版), 2006, 24(1): 62-65 |
| |
| 作者姓名: | 胡世昌 |
| |
| 作者单位: | 沈阳师范大学,科信软件学院,辽宁,沈阳,110034 |
| |
| 摘 要: | SQL注入、跨站点脚本、跨站点追踪、会话叠置是存在于网络应用层的几个安全问题,它们的共同特点是“遵守”网络标准协议,攻击者通过制造的特定情况来实现攻击.为了避免这种攻击的发生,就必须在开发网络应用程序时,对协议在复杂情况下交互作用进行深入的分析.
|
| 关 键 词: | SQL注入 跨站点脚本 跨站点追踪 会话叠置 |
| 文章编号: | 1008-374X(2006)01-0062-04 |
| 收稿时间: | 2005-05-31 |
| 修稿时间: | 2005-05-31 |
Security Issues about Web Application Software |
| |
| HU Shi-chang. Security Issues about Web Application Software[J]. Journal of Shenyang Normal University(Natural Science Edition), 2006, 24(1): 62-65 |
| |
| Authors: | HU Shi-chang |
| |
| Affiliation: | Department of Software, Shenyang Normal University, Shengyang 110034, China |
| |
| Abstract: | The security issues about web application software are arising because of the complexity of internet environment.SQL injection,XSS,XST,Session Riding are the appearing security issues that exist on the application layer of Internet environment,they all "abide by" the standard protocol.The attacker can attack a web site through some particular carefully designed scene.To avoid this attack, deepgoing analysis must be given to the co-operation of protocols when developing web application software. |
| |
| Keywords: | SQL injection XSS XST session riding |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
