Share Email Print

Proceedings Paper

Ultrabroadband photonic internet: safety aspects
Author(s): Arkadiusz Kalicki; Ryszard Romaniuk
Format Member Price Non-Member Price
PDF $14.40 $18.00
cover GOOD NEWS! Your organization subscribes to the SPIE Digital Library. You may be able to download this paper for free. Check Access

Paper Abstract

Web applications became most popular medium in the Internet. Popularity, easiness of web application frameworks together with careless development results in high number of vulnerabilities and attacks. There are several types of attacks possible because of improper input validation. SQL injection is ability to execute arbitrary SQL queries in a database through an existing application. Cross-site scripting is the vulnerability which allows malicious web users to inject code into the web pages viewed by other users. Cross-Site Request Forgery (CSRF) is an attack that tricks the victim into loading a page that contains malicious request. Web spam in blogs. There are several techniques to mitigate attacks. Most important are web application strong design, correct input validation, defined data types for each field and parameterized statements in SQL queries. Server hardening with firewall, modern security policies systems and safe web framework interpreter configuration are essential. It is advised to keep proper security level on client side, keep updated software and install personal web firewalls or IDS/IPS systems. Good habits are logging out from services just after finishing work and using even separate web browser for most important sites, like e-banking.

Paper Details

Date Published: 6 November 2008
PDF: 8 pages
Proc. SPIE 7124, Photonics Applications in Astronomy, Communications, Industry, and High-Energy Physics Experiments 2008, 712410 (6 November 2008); doi: 10.1117/12.817965
Show Author Affiliations
Arkadiusz Kalicki, Warsaw Univ. of Technology (Poland)
Ryszard Romaniuk, Warsaw Univ. of Technology (Poland)

Published in SPIE Proceedings Vol. 7124:
Photonics Applications in Astronomy, Communications, Industry, and High-Energy Physics Experiments 2008
Ryszard S. Romaniuk; Tomasz R. Wolinski, Editor(s)

© SPIE. Terms of Use
Back to Top