| dc.contributor.author | Yeng, Prosper | |
| dc.contributor.author | Yang, Bian | |
| dc.contributor.author | Solvoll, Terje | |
| dc.contributor.author | Nimbe, Peter | |
| dc.contributor.author | Weyori, Benjamin Asubam | |
| dc.date.accessioned | 2020-02-04T11:16:56Z | |
| dc.date.available | 2020-02-04T11:16:56Z | |
| dc.date.created | 2020-01-19T01:48:44Z | |
| dc.date.issued | 2019 | |
| dc.identifier.citation | Norsk Informasjonssikkerhetskonferanse (NISK). 2019, 12 (2019), 1-16. | nb_NO |
| dc.identifier.issn | 1893-6563 | |
| dc.identifier.uri | http://hdl.handle.net/11250/2639523 | |
| dc.description.abstract | An investigation was conducted into web vulnerabilities in commonly used web application templates and frameworks (WAFs) systems such as Joomla, WordPress, Moodle and C #.Net framework. A web vulnerability scoring scheme was developed and used to record metrics of the vulnerabilities associated with the web application templates and frameworks. A custom web application was also developed purported to demonstrate how the vulnerabilities could be shielded in web application frameworks (WAFs). The investigations and implementations were guided by Open Web Application Security Project. The study found some of the most common vulnerabilities in the frameworks and templates at different levels. The choice of Content Management Systems (CMS) templates and WAFs for web application systems development can then be guided by this study. | nb_NO |
| dc.language.iso | eng | nb_NO |
| dc.publisher | NIK: Norsk Informatikkonferanse | nb_NO |
| dc.title | Web Vulnerability Measures for SMEs | nb_NO |
| dc.type | Journal article | nb_NO |
| dc.type | Peer reviewed | nb_NO |
| dc.description.version | publishedVersion | nb_NO |
| dc.source.pagenumber | 1-16 | nb_NO |
| dc.source.volume | 12 | nb_NO |
| dc.source.journal | Norsk Informasjonssikkerhetskonferanse (NISK) | nb_NO |
| dc.source.issue | 2019 | nb_NO |
| dc.identifier.cristin | 1776603 | |
| dc.description.localcode | Proceedings of the 12th Norwegian Information Security Conference https://ojs.bibsys.no/index.php/NISK/article/view/706 | nb_NO |
| cristin.unitcode | 194,63,30,0 | |
| cristin.unitname | Institutt for informasjonssikkerhet og kommunikasjonsteknologi | |
| cristin.ispublished | true | |
| cristin.fulltext | original | |
| cristin.qualitycode | 1 | |
