Servicios y Seguridad, un enfoque basado en estrategias de ataque y defensa
作者: Marcela Castro León , Francesc Boixader , Manel Taboada González , Dolores Isabel Rexachs del Rosario , Emilio Luque Fadón
关键词: Hacker 、 Web application security 、 Computer security 、 Exploit 、 Cryptography 、 Web server 、 World Wide Web 、 Information technology 、 Threat model 、 Engineering 、 Web service
摘要: This article describes the methodological approach of subject Services and Security Bachelor's Degree in Information Technology (Universitat Autonoma de Barcelona), which is taught at Tomas Cerda Computer Science School. We propose an based on attack defense strategies are used computer systems. Strategy models thread that relates how rest topics as cryptography, security standards, threat modeling risk assessment methodologies contribute setting up a secure web service system. The practical part includes laboratory sessions development work hacking. In students learn to set server application, generate client's certificates, include options into applications services. By doing defend system better way through knowledge techniques tools by hackers discover exploit vulnerabilities infrastructure applications.
unirioja.es
sci-hub.st 参考文章(8)
Sylvain P. Leblanc, Ian M. Chapman, Andrew Partington, Taxonomy of cyber attacks and simulation of their effects annual simulation symposium. pp. 73- 80 ,(2011) , 10.5555/2048558.2048569
Suvda Myagmar, William Yurcik, Adam J Lee, Threat Modeling as a Basis for Security Requirements ,(2005)
Meiko Jensen, Nils Gruschka, Ralph Herkenhöner, A survey of attacks on web services Classification and countermeasures Computer Science - Research and Development. ,vol. 24, pp. 185- 197 ,(2009) , 10.1007/S00450-009-0092-6
Elisa Bertino, Lorenzo Martino, Federica Paci, Anna Squicciarini, Security for Web Services and Service-Oriented Architectures ,(2009)
Imtithal A.Saeed, Ali Selamat, Ali M. A. Abuagoub, A survey on malware propagation, analysis, and detection International Journal of Computer Applications. ,vol. 67, pp. 25- 31 ,(2013) , 10.5120/11480-7108
Julian Jang-Jaccard, Surya Nepal, None, A survey of emerging threats in cybersecurity Journal of Computer and System Sciences. ,vol. 80, pp. 973- 993 ,(2014) , 10.1016/J.JCSS.2014.02.005
S. Subashini, V. Kavitha, Review: A survey on security issues in service delivery models of cloud computing Journal of Network and Computer Applications. ,vol. 34, pp. 1- 11 ,(2011) , 10.1016/J.JNCA.2010.07.006
Jonathan Spring, Timothy Shimeall, Introduction to Information Security: A Strategic-Based Approach ,(2013)