Vulnerability Factors in New Web Applications : Audit Tools , Developer Selection & Languages

  title={Vulnerability Factors in New Web Applications : Audit Tools , Developer Selection & Languages},
  author={Jason Bau and Frank Wang and Elie Bursztein and Patrick Mutchler and John C. Mitchell},
We develop a web application vulnerability metric based on the combined reports of 4 leading commercial black box vulnerability scanners and evaluate this metric using historical benchmarks and our new sample of applications. We then use this metric to examine the impact of three factors on web application security: provenance (developed by startup company or freelancers), developer security knowledge, and programming language. Our study evaluates 27 web applications developed by programmers… CONTINUE READING


Publications referenced by this paper.
Showing 1-7 of 7 references

Analysis of Reliability in Web Service for Fuzzy Keyword Search in Encrypted Data

  • G. Sharath, R. Rashmi
  • International Journal of Computer Trends and…
  • 2012
1 Excerpt

Exploring the Relationship Between Web Application Development Tools and Security

  • M. Finifter, D. Wagner
  • Proceedings of the 2nd USENIX conference on Web…
  • 2011
1 Excerpt

PortSwigger Web Security . Burpsuite

  • M. Doyle J. Walden, R. Lenhof, J. Murray
  • Proceedings of the 2 nd USENIX conference on Web…
  • 2011

Similar Papers

Loading similar papers…