| Web application grows rapidly, but most of developers are lack of security consciousness.It brings about full of loopholes in web application. Wincor Nixdorf company is a provider ofbank and retail solution. As what it focuses on is special, customer is strict to its product. Inorder to enhance the security quality of product quickly, it’s urgent to find a integrity solutionto improve the security sense and skill.This thesis discusses the web application security of enterprise in detail. It points out thecommon security vulnerability of the web application by the assessment method of OWASPand then it researches on the detection and measure of the common vulnerability and raise themethod of Top10security vulnerability detection. The security tools which provide byOWASP are improved to have different solutions for different security vulnerabilities. Thearticle also sums up the security problem of web application and sets up the training platformof web security. In the end, the innovative security development lifecycle is formed tointegrate the security into the culture of enterprise.The significance of the research is that the method of vulnerability detection and securitymeasure helps to improve the security of web application. The platform of security trainingpromotes the security sense of software engineer. The key point is the innovative developmentsecurity lifecycle. The integrated solution from technique to development process raises thelevel of software quality greatly. The research helps to the improvement of the webapplication security of enterprise. It also provides the guide of security development toenhance the competition and reliability of enterprise. |
PDF Full Text Request