Utilize este identificador para referenciar este registo:
http://hdl.handle.net/10071/25502Registo completo
| Campo DC | Valor | Idioma |
|---|---|---|
| dc.contributor.author | Vieira, T. | - |
| dc.contributor.author | Serrão, C. | - |
| dc.date.accessioned | 2022-05-23T08:36:49Z | - |
| dc.date.available | 2022-05-23T08:36:49Z | - |
| dc.date.issued | 2016 | - |
| dc.identifier.isbn | 978-1-908320-73-5 | - |
| dc.identifier.uri | http://hdl.handle.net/10071/25502 | - |
| dc.description.abstract | Nowadays, information security is an increasing concern in institutions and organizations. This concern is even greater in the finance sector, not only because the financial amount involved but also clients and organization’s private and sensitive information. As a way to test security in infrastructures, networks, deployed web applications and many other assets, organizations have been performing penetration testing (pentest) which simulates an attacker’s behavior in a controlled environment in order to identify its vulnerabilities. This article focusses on the analysis of the results of security audits conducted on several financial web applications from one institution with aid of automatic tools in order to assess their web applications security level. To help in security matters, many organizations build security frameworks for vulnerability assessment, security assessment, threat modeling, penetration testing, risk management and many more. As for penetration testing, organizations such as OWASP provide vulnerability and security information, a testing methodology, risk analysis and penetration testing tools. | eng |
| dc.language.iso | eng | - |
| dc.publisher | IEEE | - |
| dc.relation | UID/MULTI/0446/2013 | - |
| dc.rights | openAccess | - |
| dc.subject | Component | eng |
| dc.subject | Web security | eng |
| dc.subject | Finance sector | eng |
| dc.subject | Pentesting | eng |
| dc.subject | Penetration testing | eng |
| dc.subject | Vulnerability | eng |
| dc.subject | Risk analysis | eng |
| dc.subject | CVSS | eng |
| dc.title | Web security in the finance sector: Analysing the security of financial web applications: A case study | eng |
| dc.type | conferenceObject | - |
| dc.event.title | 11th International Conference for Internet Technology and Secured Transactions, ICITST 2016 | - |
| dc.event.type | Conferência | pt |
| dc.event.location | Barcelona, Spain | eng |
| dc.event.date | 2016 | - |
| dc.pagination | 255 - 259 | - |
| dc.peerreviewed | yes | - |
| dc.journal | 2016 11th International Conference for Internet Technology and Secured Transactions (ICITST) | - |
| degois.publication.firstPage | 255 | - |
| degois.publication.lastPage | 259 | - |
| degois.publication.location | Barcelona, Spain | eng |
| degois.publication.title | Web security in the finance sector: Analysing the security of financial web applications: A case study | eng |
| dc.date.updated | 2022-05-23T09:35:52Z | - |
| dc.description.version | info:eu-repo/semantics/acceptedVersion | - |
| dc.identifier.doi | 10.1109/ICITST.2016.7856707 | - |
| dc.subject.fos | Domínio/Área Científica::Ciências Naturais::Ciências Físicas | por |
| iscte.identifier.ciencia | https://ciencia.iscte-iul.pt/id/ci-pub-30463 | - |
| iscte.alternateIdentifiers.wos | WOS:000406026800038 | - |
| iscte.alternateIdentifiers.scopus | 2-s2.0-85016033735 | - |
| Aparece nas coleções: | ISTAR-CRI - Comunicações a conferências internacionais | |
Ficheiros deste registo:
| Ficheiro | Descrição | Tamanho | Formato | |
|---|---|---|---|---|
| conferenceObject_30463.pdf | Versão Aceite | 413,64 kB | Adobe PDF | Ver/Abrir |
Todos os registos no repositório estão protegidos por leis de copyright, com todos os direitos reservados.