Design the Model of CSRF Attack Tree for Immunization the Web Application in Development Process

Q: How can I download an article?

To download an article from SID, first log in to the site, search for the article title, and click on the 'Download Article' option.

Q: How can I download an ISI article?

To download an ISI article on SID, enter the keyword or article title in the search bar, view the relevant results, click on the desired article, and select the 'Download Article' option.

Q: How can I access the SID database?

To access the SID database, visit SID.ir, create an account, and log in to access scientific resources.

Q: Is downloading articles from SID free?

Some articles on SID are available for free, while others require payment. Details are specified on the article's page.

KHEIRI A.; BAGHERI M.

مرکز اطلاعات علمی Scientific Information Database (SID) - Trusted Source for Research and Academic Resources

Journal Paper

Paper Information

Journal: JOURNAL OF ELECTRONIC AND CYBER DEFENCE Year:2015 | Volume:3 | Issue:1 (9) Page(s): 41-52

Download Full-Text

Persian Verion

View:

679

Download:

Cites:

Information Journal Paper

Title

Design the Model of CSRF Attack Tree for Immunization the Web Application in Development Process

Author(s)

KHEIRI A. | BAGHERI M. | Issue Writer Certificate

Keywords

CSRFQ2

Attack TreeQ2

N-gram propertiesQ2

Practical propertiesQ2

security in develop lifiecycleQ2

Abstract

make security after production, the designer's neglect on Attack Tree and developer's, are of the important challenges in web application development. One of the most common attacks on Web domain is CSRF which caused the program to the user's trust. One of the most common attacks on Web domain is CSRF which caused from user's trust on web application. In this paper the CSRF Attack Tree as a security solution in the web applications production process without the need to interact with the end user is provided. In this context, with integration the derived attributes from exploit_codes and experimental attributes, the CSRF Attack Tree is derived. With use the produced tree, with 83% accuracy, we were able to identify the different routes that hackers use on CSRF attacks. Immunization the detected attack vectors in this article, by designers and developers, will be resulted to produce secure web applications against CSRF attacks.

Cites

No record.

References

No record.

Cite

APA: Copy

KHEIRI, A., & BAGHERI, M.. (2015). Design the Model of CSRF Attack Tree for Immunization the Web Application in Development Process. JOURNAL OF ELECTRONIC AND CYBER DEFENCE, 3(1 (9) ), 41-52. SID. https://sid.ir/paper/243251/en

Vancouver: Copy

KHEIRI A., BAGHERI M.. Design the Model of CSRF Attack Tree for Immunization the Web Application in Development Process. JOURNAL OF ELECTRONIC AND CYBER DEFENCE[Internet]. 2015;3(1 (9) ):41-52. Available from: https://sid.ir/paper/243251/en

IEEE: Copy

A. KHEIRI, and M. BAGHERI, “Design the Model of CSRF Attack Tree for Immunization the Web Application in Development Process,” JOURNAL OF ELECTRONIC AND CYBER DEFENCE, vol. 3, no. 1 (9) , pp. 41–52, 2015, [Online]. Available: https://sid.ir/paper/243251/en

Related Journal Papers