Open AccessWeb Application Vulnerability Detection Using Taint Analysis and Black-box Testing
Author(s) -
Heribertus Yulianton,
Agung Trisetyarso,
Wayan Suparta,
Bahtiar Saleh Abbas,
Chul Ho Kang
Publication year - 2020
Publication title -
iop conference series. materials science and engineering
Language(s) - English
Resource type - Journals
eISSN - 1757-899X
pISSN - 1757-8981
DOI - 10.1088/1757-899x/879/1/012031
Subject(s) - computer science , black box , web application , web application security , vulnerability (computing) , strengths and weaknesses , vulnerability assessment , computer security , web testing , world wide web , taint checking , web service , web development , operating system , software , artificial intelligence , psychology , philosophy , epistemology , psychological resilience , psychotherapist
Web applications continue to grow however web attacks are also increasing, this shows an increase in web application vulnerabilities. Several methods have been used to detect vulnerabilities in web applications such as black-box testing, dynamic analysis, and static analysis. In this article, we propose a framework for detecting web application vulnerabilities by combining all three methods. The strengths of one method are used to overcome the weaknesses of another method. This framework is believed to provide better results than if each method was used separately.