SQLIVD - AOP: Preventing SQL Injection Vulnerabilities Using Aspect Oriented Programming through Web Services

2011 ◽  
pp. 327-337
Author(s):  
V. Shanmughaneethi ◽  
Ra. Yagna Pravin ◽  
C. Emilin Shyni ◽  
S. Swamynathan
Keyword(s):  
Web Services ◽  
Aspect Oriented Programming ◽  
Sql Injection

SC-WS

2014 ◽  
Vol 4 (2) ◽  
pp. 31-44
Author(s):  
Ghita Kouadri Mostefaoui ◽  
Zakaria Maamar ◽  
Nanjangud C. Narendra
Keyword(s):  
Web Services ◽  
Web Service ◽  
Self Healing ◽  
Business Logic ◽  
Aspect Oriented Programming ◽  
Security Concerns ◽  
Oriented Approach ◽  
The Web

This paper discusses Aspect-Oriented Programming (AOP) as an efficient way to handle security concerns in Web services. Without AOP, the necessary security code would be mixed with the business logic that a Web service implements. This renders the maintenance of both code and business logic tedious and prone to errors. AOP allows confining codes of non-functional concerns like security and self-healing into specific modules so that they do not cross-cut with the Web service's business logic. The proposed aspect-oriented approach in this paper is built upon three levels referred to as user, component, and resource, and adopts three types of context, one context per level. The contexts contain various details on the environment of Web services, which permits activating the necessary aspects in response to these details. A set of experiments validating this approach are also reported in this paper.

Quality of Service and Extra-Functional Properties for Web Services

2013 ◽  
pp. 35-64
Author(s):  
Guadalupe Ortiz ◽  
Behzad Bordbar
Keyword(s):  
Quality Of Service ◽  
Web Services ◽  
Functional Properties ◽  
Model Transformation ◽  
Model Driven Architecture ◽  
Aspect Oriented Programming ◽  
Maintenance Costs ◽  
Model Driven

The presented approach draws on two main software techniques: Model-Driven Architecture, and aspect-oriented programming. The method involves modeling of the Quality of Service and Extra-functional properties in a platform-independent fashion. Then applying model transformation, the platform-independent models are transformed into platform-specific models, and finally into code. The code for Quality of Service and Extra-functional properties are integrated into the system relying on aspect-oriented techniques in a decoupled manner. The presented approach is evaluated with the help of a case study to establish that the approach results in increasing the system’s modularity and thus reducing implementation and maintenance costs.

CONCRETE SOLUTIONS FOR WEB SERVICES ADAPTABILITY USING POLICIES AND ASPECTS

2006 ◽  
Vol 15 (03) ◽  
pp. 415-438 ◽  
Author(s):  
RICARDO FERRAZ TOMAZ ◽  
MEHDI BEN HMIDA ◽  
VALERIE MONFORT
Keyword(s):  
Information Systems ◽  
Web Services ◽  
Web Service ◽  
Design Solution ◽  
Technical Solution ◽  
Loose Coupling ◽  
Aspect Oriented Programming ◽  
Service Oriented Architectures ◽  
Service Oriented ◽  
Service Behavior

Traditional middleware is usually developed on monolithic and non-evolving entities, resulting in a lack of flexibility and interoperability. Among current architectures, Service Oriented Architectures aim to easily develop more adaptable Information Systems. Most often, Web Service is the fitted technical solution which provides the required loose coupling to achieve such architectures. However, there is still much to be done in order to obtain a genuinely flawless Web Service, and current market implementations still do not provide adaptable Web Service behavior depending on the service contract. In this paper, we present our two last years of work toward a more adaptable SOA. We proposed two approaches that consider Aspect Oriented Programming (AOP) as a new design solution for Web Services. The two approaches enable us to glue new non-functional behaviors to a Web Service without going back to modify, recompile, retest and finally redeploy it.

scholarly journals Enhancement of Web Security Against External Attack

2017 ◽  
Vol 13 (15) ◽  
pp. 228
Author(s):  
Md. Fazlul Haque ◽  
Mohammad Badrul Alam Miah ◽  
Fuyad Al Masud
Keyword(s):  
Web Services ◽  
Web Application ◽  
Real Life ◽  
Web Security ◽  
Vital Role ◽  
Security Vulnerabilities ◽  
Sql Injection ◽  
Web Based ◽  
Security Issues ◽  
Proposed Model

The security of web-based services is currently playing a vital role for the software industry. In recent years, many technologies and standards have emerged in order to handle the security issues related to web services. This paper shows techniques to enhance the security of web services, and some of the recent challenges and recommendations of a proposed model to secure web services. It shows the security process of a real life web application, which includes; HTML5 forms, login security, and a single signon solution. This paper also aim to discuss the ten (10) most common web security vulnerabilities and how to prevent the web application from three (3) of the vulnerabilities. Amongst them are; SQL Injection, Cross Site Scripting and Broken Authentication, and Session Management.

Sign in / Sign up

Export Citation Format

Share Document