You are here: silicon.com > Resources > White Papers > Security > Intrusion - Tampering > Network Security

Network Security White Papers

Common Web Application Attack Types and Security Using ASP.NET

Overview Web applications security is one of the most daunting tasks today, because of security shift from lower levels of ISO OSI model to application level, and because of current situation in IT environment. ASP.NET offers powerful mechanisms to render these attacks futile, but it requires some knowledge of implementing Web application security. This paper focuses on attacks against Web applications, either to gain direct benefit by collecting private information or to disable target sites. It describes the two most common Web application attacks: SQL Injection and Cross Site Scripting, and is based on author's perennial experience in Web application security. It explains how to use ASP.NET to provide Web applications security.

Further White Paper Details
Publisher	University of Belgrade	File Format	PDF
Date Published	December 2006
Format	White Papers
Topics	Network Security, .NET, Application Development

Did you find this white paper useful?

Balancing Security Against Productivity

Publisher:
Novell

Security: New strides in preventing intrusions.

Publisher:
IBM

Novell Zenworks Endpoint Security Management: Total Control from a Single Console

Publisher:
Novell

Secure Desktop On-Demand Webcast

Publisher:
Novell

Woods Services Gains Advanced Web Filtering Technology with Bloxx

Publisher:
Bloxx

Tags:
network security

Inprise to benefit from Microsoft cash injection

Inprise, the struggling application development company, is to receive a $125m cash injection from long-term adversary, Microsoft, according to US reports. Microsoft is set to buy $25m of Inprise stock - valued at $4 per share at close of play on...

Channel:
Operating Systems

Passwords at risk from Firefox, IE flaw

Security company Secunia has advised users to disable the "remember passwords for sites" option in Firefox preferences. As the page did not exhibit any signs of external content, such as cross-site scripting (XSS) or open redirects, it is...

Malicious code getting harder to spot

To shield against malicious JavaScript, web surfers can disable JavaScript but that can impact the functionality of many websites. But an attack could also lurk on a trusted site by exploiting a common flaw known as cross-site scripting.

Web 2.0 threat looms

XSS is one of the top 10 web application vulnerabilities identified by the Open Web Application Security Project (OWASP), along with injection attacks and malicious file execution. Browser vulnerabilities such as cross-site scripting (XSS) have the...

Facebook under attack: The spam and phishing threat

Kelly also said Facebook had come under attempted cross-site scripting (CSS) and SQL injection attacks, but that the security layer in Facebook's system was successful in intervening and notifying Kelly's security team of such attempts.

Does open source pose a security risk?

As a result, bugs such as SQL injection and cross-site scripting continue to proliferate, Fortify said. The report said: "Open-source development can benefit from private industry practices - notably those created by financial services...

Live Webcast: Telecoms 2.0 - Where is telecoms heading?

In this webcast, our panel of experts will review where we are with next generation telecoms in the UK, working through the concept of 'Telecoms 2.0': - Realising the potential of Next Generation Networks - why it isn't just about the technology? - What attributes should firms be looking for in their telco partner? - Is the relationship between telco provider and customer changing? - What things need to happen to make next generation services a reality? - You say you want the supplier to change. Do you want to change too? - What is Telecoms 2.0?

Publisher:
ZDNet UK

Telecom 2.0: Mind over matter

ntl:Telewest Business believes that the role of the telco is evolving. Gone are the days when it was enough to simply focus on circuits and minutes, customers now need a far higher degree of interaction and look for suppliers who will talk business solutions with them.

Publisher:
ntl:Telewest Business

IBM Information Server Change Data Capture

In today's fast-paced world, access to real-time data has never been more important. To be successful, organizations need to be able to report and analyze corporate data quickly and easily, regardless of what applications created the data, what platform they're running on, or what database they're stored in.

Publisher:
IBM

An examination of server consolidation: the trends that can drive efficiencies and help businesses gain a competitive edge

This white paper provides a starting point for organizations contemplating server consolidation. It includes an overview of server consolidation concepts and techniques and provides guidance on methodologies. It also looks at the potential cost savings associated with server consolidation and offers information on how organizations can sustain the advantage they have gained by consolidating their servers.

Publisher:
IBM

Also on silicon.com

Site Navigation:

Network Security White Papers

Common Web Application Attack Types and Security Using ASP.NET

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific