Font Size: a A A

A Secure Software Design Pattern in the Prevention for Reflected Cross-Site Scripting

Posted on:2018-04-08Degree:D.C.SType:Dissertation
University:Colorado Technical UniversityCandidate:Parsons, Matthew JohnFull Text:PDF
GTID:1478390020955444Subject:Computer Science
Abstract/Summary:
Software needs to address security through secure software design patterns. Secure software design patterns can help remediate software security vulnerabilities. Sensitive information is stored, transmitted and processed by software that lacks adequate built-in security. Malicious attackers see value in the data and the vulnerabilities inherent in the design of software systems. Computers must preserve the access and integrity of confidential data processed by these software systems. This dissertation evaluates how the Microsoft Security Controls in Visual Studio 2015 and the 4.5 .NET framework can prevent reflected cross-site scripting in a .NET application with a POST request to another page with string input. One hundred malicious scripts were sent to the application before and after the implementation of the Microsoft Security Controls in the 4.5 .NET framework. The results of the tests were recorded and then evaluated using quantitative methods to see if there is a relationship between security controls and secure software design patterns.
Keywords/Search Tags:Secure software design, Reflected cross-site scripting, Security, NET framework
Related items