UPM Institutional Repository

Developing a secure web application using OWASP guidelines.


Sedek, Khairul Anwar and Osman, Norlis and Osman, Mohd Nizam and Jusoff, Kamaruzaman (2009) Developing a secure web application using OWASP guidelines. Computer and Information Science, 2 (4). pp. 137-143. ISSN 1913-8989; ESSN: 1913-8997


Developing a secure Web application is very difficult task. Therefore developers need a guideline to help them to develop a secure Web application. Guideline can be used as a checklist for developer to achieve minimum standard of secure Web application. This study evaluates how good is OWASP guideline in helping developer to build secure Web application. The developed system is then tested using code auditing and penetration testing to identify the achievement of the system security for the application. After applying the testing techniques from Open Source Security Testing Methodology (OSSTMM) on the Top Ten Critical vulnerabilities as defined by OWASP, a standard measure score are calculated. The score is used to decide on the level of security of the developed web application. A high percentage score would indicate that the guideline helps in building a secured web application. Hence, the result proved that OWASP guideline is effective in ensuring the trustworthiness of the system and can be used as referral by other web developer especially in developing applications for a university.

Download File

Full text not available from this repository.

Additional Metadata

Item Type: Article
Divisions: Faculty of Forestry
Publisher: Canadian Center of Science and Education
Keywords: Web application; Guideline; Security.
Depositing User: Norhazura Hamzah
Date Deposited: 11 Jun 2014 06:05
Last Modified: 11 Jun 2014 06:05
URI: http://psasir.upm.edu.my/id/eprint/13979
Statistic Details: View Download Statistic

Actions (login required)

View Item View Item